Contract Overview
Balance: 29.3797020009402362 Ether
Transactions: 245 txns
 Latest 25 transactions from a total of 245 transactions

TxHash Age From To Value [TxFee]
0x96d7ff253787e93a9cb46055babe20d057cbef8ac816ac5a039ba081257fd29a30 days 3 hrs ago0x0cb254842a934336015853cb329bf7c56f907a09  IN   0x5e86cca975d21f89390880e81d240153f16effe110.2 Ether0.000029481
0x746daf46c1d23ff660c7785236e4cf1926931a6dfdc5882a353748c63b69fe8d30 days 7 hrs ago0x2107fde7eb3647957411cf4e1861ecb562dd18bf  IN   0x5e86cca975d21f89390880e81d240153f16effe10.15 Ether0.000068286
0x8c1acaaab8be6d24c53bcd080cdea1d7a5f1282643482e9bde0cf5a888e496ed30 days 7 hrs ago0x2107fde7eb3647957411cf4e1861ecb562dd18bf  IN   0x5e86cca975d21f89390880e81d240153f16effe10.1 Ether0.000068286
0xbb704d98adfb03e54ee05937fc11d513191dff670a55ab48111022919d410d5f30 days 22 hrs ago0x38948e45b3ff8845071a11640cb59feac1433a7b  IN   0x5e86cca975d21f89390880e81d240153f16effe10 Ether0.000067846
0x599c8514a5acb5ce84dd1ae6b695c3d9230809a19b85b12e0cff8d4c0ab8746e30 days 22 hrs ago0x787bee930a692bb2a32c68ed825c6bee0b586c3e  IN   0x5e86cca975d21f89390880e81d240153f16effe11 Ether0.000171548
0xd2bf4cf58656863b1a5afdc9b5a530003813c5acebb8b6a64e6f5a4a122e987330 days 22 hrs ago0x38948e45b3ff8845071a11640cb59feac1433a7b  IN   0x5e86cca975d21f89390880e81d240153f16effe10 Ether0.000067846
0x8b4c149378c0fb43258b5f654030b69a47dffa1f009f8adf46a1a33d426fb8da30 days 22 hrs ago0x787bee930a692bb2a32c68ed825c6bee0b586c3e  IN   0x5e86cca975d21f89390880e81d240153f16effe11 Ether0.000171548
0x8cce71b5c9363e5657ad51b84e51743f686d378024822c389eabbb4c93d27fec30 days 22 hrs ago0x38948e45b3ff8845071a11640cb59feac1433a7b  IN   0x5e86cca975d21f89390880e81d240153f16effe10 Ether0.000067846
0x76dfbbb8de5f38fce3b371a49fd8ca0d373f42c60cd99909fd33dff1ac69d14b30 days 22 hrs ago0x787bee930a692bb2a32c68ed825c6bee0b586c3e  IN   0x5e86cca975d21f89390880e81d240153f16effe11 Ether0.00017142
0x75dbd5ac2e53e9a2ead5f8da2ef72bd1cba34da1ecf53ac5744d33c1345a55e730 days 22 hrs ago0x38948e45b3ff8845071a11640cb59feac1433a7b  IN   0x5e86cca975d21f89390880e81d240153f16effe10 Ether0.000067846
0xba128785d93519b9d2418a6ffa3b437b7b170fee658550c3039db1c2d5424e6b30 days 22 hrs ago0x787bee930a692bb2a32c68ed825c6bee0b586c3e  IN   0x5e86cca975d21f89390880e81d240153f16effe11 Ether0.000171548
0x286e91c122219542de075be2fb615e3988222f00643c144b9be48e26dfab637730 days 23 hrs ago0x38948e45b3ff8845071a11640cb59feac1433a7b  IN   0x5e86cca975d21f89390880e81d240153f16effe10 Ether0.000033923
0xd3cd2d35b909d72d751ca72a346bccef01422ee44b01165f9bd82cf08018ba4b30 days 23 hrs ago0x2107fde7eb3647957411cf4e1861ecb562dd18bf  IN   0x5e86cca975d21f89390880e81d240153f16effe10.1 Ether0.000085774
0x6c69b90283dc3ecba2e8680394bb58259e1d38705a3ed2318f42ffe9bbf656c830 days 23 hrs ago0x38948e45b3ff8845071a11640cb59feac1433a7b  IN   0x5e86cca975d21f89390880e81d240153f16effe10 Ether0.000033899
0x3e7e43a76773c1696dfc1b3757950a0be3880e21e64b5587cceecc63808a148330 days 23 hrs ago0x2107fde7eb3647957411cf4e1861ecb562dd18bf  IN   0x5e86cca975d21f89390880e81d240153f16effe10.1 Ether0.000085454
0x5fde8dc7fbf0ab73d8d02e2360d3d8b77185ac972731b0f073e72db6d3f34d5e30 days 23 hrs ago0x38948e45b3ff8845071a11640cb59feac1433a7b  IN   0x5e86cca975d21f89390880e81d240153f16effe10 Ether0.000033795
0x214486bc62bf16586fb523154d873c5ec4d50e0f09315ea39b0e324c03a9d46a30 days 23 hrs ago0x2107fde7eb3647957411cf4e1861ecb562dd18bf  IN   0x5e86cca975d21f89390880e81d240153f16effe10.1 Ether0.000085774
0xc5833b66d782659d431370e8c90039da7126672da66580f2d445dc6a46fffe5f30 days 23 hrs ago0x38948e45b3ff8845071a11640cb59feac1433a7b  IN   0x5e86cca975d21f89390880e81d240153f16effe10 Ether0.000033899
0x68eddc97282050ecc3bc03d58a8ac266c3e06fac4905a2a90051ef32511d457430 days 23 hrs ago0x2107fde7eb3647957411cf4e1861ecb562dd18bf  IN   0x5e86cca975d21f89390880e81d240153f16effe10.1 Ether0.000085518
0x0c0c42d82faa35bfd6e6526574c7cafe3acbecd5ecacb44023a06ecd5876dd8430 days 23 hrs ago0x38948e45b3ff8845071a11640cb59feac1433a7b  IN   0x5e86cca975d21f89390880e81d240153f16effe10 Ether0.000033849
0x4351049ccfef7ca1a67d3b28ecb15ff6c999f4b9aa4bed1cdc743fe5e411607530 days 23 hrs ago0x2107fde7eb3647957411cf4e1861ecb562dd18bf  IN   0x5e86cca975d21f89390880e81d240153f16effe10.1 Ether0.00008571
0x69a924645af97a3607d4e450a266314d9f164ec4efc5a6aaf9d0f546e1d4439330 days 23 hrs ago0x38948e45b3ff8845071a11640cb59feac1433a7b  IN   0x5e86cca975d21f89390880e81d240153f16effe10 Ether0.000033809
0x53fe580ca14951a8298bd9d4f9891c9bea3e445e31eb13e6f8575a9e9b59d34c30 days 23 hrs ago0x2107fde7eb3647957411cf4e1861ecb562dd18bf  IN   0x5e86cca975d21f89390880e81d240153f16effe10.1 Ether0.000085518
0xc28270ea5346fd347ec6b61f657c067a436535d4b772941a819b1a2e9812808830 days 23 hrs ago0x38948e45b3ff8845071a11640cb59feac1433a7b  IN   0x5e86cca975d21f89390880e81d240153f16effe10 Ether0.000033899
0x07b7be5f6da3b4543368863ab50016f3078fed72ac6b0bb8099cc33f7a73daf430 days 23 hrs ago0x2107fde7eb3647957411cf4e1861ecb562dd18bf  IN   0x5e86cca975d21f89390880e81d240153f16effe10.1 Ether0.000085454
[ Download CSV Export  ] 
 Internal Transactions as a result of Contract Execution
 Latest 25 Internal Txns, Click here To View More View All
ParentTxHash Block Age From To Value
0xbb704d98adfb03e54ee05937fc11d513191dff670a55ab48111022919d410d5f487419630 days 22 hrs ago0x5e86cca975d21f89390880e81d240153f16effe10x787bee930a692bb2a32c68ed825c6bee0b586c3e1.1868 Ether
0xd2bf4cf58656863b1a5afdc9b5a530003813c5acebb8b6a64e6f5a4a122e9873487418230 days 22 hrs ago0x5e86cca975d21f89390880e81d240153f16effe10x787bee930a692bb2a32c68ed825c6bee0b586c3e1.1868 Ether
0x8cce71b5c9363e5657ad51b84e51743f686d378024822c389eabbb4c93d27fec487414830 days 22 hrs ago0x5e86cca975d21f89390880e81d240153f16effe10x787bee930a692bb2a32c68ed825c6bee0b586c3e1.1868 Ether
0x75dbd5ac2e53e9a2ead5f8da2ef72bd1cba34da1ecf53ac5744d33c1345a55e7487411430 days 22 hrs ago0x5e86cca975d21f89390880e81d240153f16effe10x787bee930a692bb2a32c68ed825c6bee0b586c3e1.1868 Ether
0x286e91c122219542de075be2fb615e3988222f00643c144b9be48e26dfab6377487402530 days 23 hrs ago0x5e86cca975d21f89390880e81d240153f16effe10x2107fde7eb3647957411cf4e1861ecb562dd18bf0.196 Ether
0x6c69b90283dc3ecba2e8680394bb58259e1d38705a3ed2318f42ffe9bbf656c8487396030 days 23 hrs ago0x5e86cca975d21f89390880e81d240153f16effe10x2107fde7eb3647957411cf4e1861ecb562dd18bf1 wei
0x5fde8dc7fbf0ab73d8d02e2360d3d8b77185ac972731b0f073e72db6d3f34d5e487393730 days 23 hrs ago0x5e86cca975d21f89390880e81d240153f16effe10x2107fde7eb3647957411cf4e1861ecb562dd18bf0.196 Ether
0xc5833b66d782659d431370e8c90039da7126672da66580f2d445dc6a46fffe5f487392630 days 23 hrs ago0x5e86cca975d21f89390880e81d240153f16effe10x2107fde7eb3647957411cf4e1861ecb562dd18bf1 wei
0x0c0c42d82faa35bfd6e6526574c7cafe3acbecd5ecacb44023a06ecd5876dd84487390830 days 23 hrs ago0x5e86cca975d21f89390880e81d240153f16effe10x2107fde7eb3647957411cf4e1861ecb562dd18bf1 wei
0x69a924645af97a3607d4e450a266314d9f164ec4efc5a6aaf9d0f546e1d44393487389330 days 23 hrs ago0x5e86cca975d21f89390880e81d240153f16effe10x2107fde7eb3647957411cf4e1861ecb562dd18bf0.196 Ether
0xc28270ea5346fd347ec6b61f657c067a436535d4b772941a819b1a2e98128088487387330 days 23 hrs ago0x5e86cca975d21f89390880e81d240153f16effe10x2107fde7eb3647957411cf4e1861ecb562dd18bf1 wei
0xc3cf4d9b48ee4fa45865bda7bc5729e11efd74d00fa5ee418732efb7c19fe336487384930 days 23 hrs ago0x5e86cca975d21f89390880e81d240153f16effe10x2107fde7eb3647957411cf4e1861ecb562dd18bf0.196 Ether
0xbddfa3961c57904dce9ddab94d1a87848e474532c92e2c590b7125a349cb5ade487382430 days 23 hrs ago0x5e86cca975d21f89390880e81d240153f16effe10x2107fde7eb3647957411cf4e1861ecb562dd18bf0.196 Ether
0xc25aa82fb03810afde3304963e83dcd57dd227bc1ce673702638246af157ca14487381330 days 23 hrs ago0x5e86cca975d21f89390880e81d240153f16effe10x2107fde7eb3647957411cf4e1861ecb562dd18bf0.196 Ether
0xaddb021172529029352bbba117fbc305a5d377906ac5050827cb2c1308644336487380330 days 23 hrs ago0x5e86cca975d21f89390880e81d240153f16effe10x2107fde7eb3647957411cf4e1861ecb562dd18bf0.160363636363636363 Ether
0xb8f3fa595b18ab119820ed6f0ec134f58dbabe764dc47bfa8db3fe4b06a320f5487379530 days 23 hrs ago0x5e86cca975d21f89390880e81d240153f16effe10x2107fde7eb3647957411cf4e1861ecb562dd18bf0.196 Ether
0x2ee90d0db751fdfd8179079e6337f0acae5c7a653b0477dd02508bceb653a1c7487378230 days 23 hrs ago0x5e86cca975d21f89390880e81d240153f16effe10x2107fde7eb3647957411cf4e1861ecb562dd18bf0.196 Ether
0xc5d57a673abbb0793afef59ecdc20bf4e96b3be490cd8345d97c3bc0021c4e39487376430 days 23 hrs ago0x5e86cca975d21f89390880e81d240153f16effe10x2107fde7eb3647957411cf4e1861ecb562dd18bf1 wei
0x51d1295aa3c1a19e02ab076c34d3025b4c2b77cc5a71dbfac7daa1a816b3342c487374031 days 2 mins ago0x5e86cca975d21f89390880e81d240153f16effe10x2107fde7eb3647957411cf4e1861ecb562dd18bf0.196 Ether
0xd091a2a33fd8d5330272f5b5c7f5efccab7813bd8d3bec7ade11265aaef11f76487370231 days 9 mins ago0x5e86cca975d21f89390880e81d240153f16effe10x2107fde7eb3647957411cf4e1861ecb562dd18bf0.196 Ether
0xf037bc974a37219c7449b5ae178b965de6974eaf40cf4063f36f8c74b78bed10487368131 days 12 mins ago0x5e86cca975d21f89390880e81d240153f16effe10x2107fde7eb3647957411cf4e1861ecb562dd18bf1 wei
0xafdea240cef1433d31cf61cf93fbb84cfbb9e7143b5a106d7df142731995b78c487356231 days 36 mins ago0x5e86cca975d21f89390880e81d240153f16effe10x2107fde7eb3647957411cf4e1861ecb562dd18bf1 wei
0x1a3e2a139874386c636a31c286e74ae68185cf5b248e31a89d418b516fd1118a487353731 days 39 mins ago0x5e86cca975d21f89390880e81d240153f16effe10x2107fde7eb3647957411cf4e1861ecb562dd18bf0.2158 Ether
0x952fb909c9708ce409a27765c15e8dfaed2cd8907980933fb646d6d19a667ec4487352531 days 42 mins ago0x5e86cca975d21f89390880e81d240153f16effe10x2107fde7eb3647957411cf4e1861ecb562dd18bf0.196 Ether
0x8d3d9dd7f79b0a1cb0de3cc451fd9ea489e85d75b3ebcd1af166d793f5dfbbb8487349731 days 46 mins ago0x5e86cca975d21f89390880e81d240153f16effe10x2107fde7eb3647957411cf4e1861ecb562dd18bf0.1584 Ether
[ Download CSV Export  ] 
Contract Source Code Verified (Exact Match)
Contract Name: MDTD1
Compiler Version: v0.5.2+commit.1df8f40c
Optimization Enabled: No
Runs (Optimiser):  200



  Contract Source Code   Find Similiar Contracts

pragma solidity ^0.5.2;

// * Uses hybrid commit-reveal + block hash random number generation that is immune
//   to tampering by players, house and miners. Apart from being fully transparent,
//   this also allows arbitrarily high bets.
//
// * Refer to https://tomodice.com/whitepaper.pdf for detailed description and proofs.
contract MDTD1 {
    /// *** Constants section

    // Each bet is deducted 1% in favour of the house, but no less than some minimum.
    // The lower bound is dictated by gas costs of the settleBet transaction, providing headroom for up to 10 Gwei prices.
    uint constant HOUSE_EDGE_PERCENT = 1;
    uint constant HOUSE_EDGE_MINIMUM_AMOUNT = 0.0003 ether;

    // Bets lower than this amount do not participate in jackpot rolls (and are not deducted JACKPOT_FEE).
    uint constant MIN_JACKPOT_BET = 0.1 ether;

    // Chance to win jackpot (currently 0.1%) and fee deducted into jackpot fund.
    uint constant JACKPOT_MODULO = 1000;
    uint constant JACKPOT_FEE = 0.001 ether;

    // There is minimum and maximum bets.
    uint constant MIN_BET = 0.01 ether;
    uint constant MAX_AMOUNT = 10000 ether;

    // Modulo is a number of equiprobable outcomes in a game:
    //  - 2 for coin flip
    //  - 6 for dice
    //  - 6*6 = 36 for double dice
    //  - 100 for etheroll
    //  - 37 for roulette
    //  etc.
    // It's called so because 256-bit entropy is treated like a huge integer and
    // the remainder of its division by modulo is considered bet outcome.
    uint constant MAX_MODULO = 100;

    // For modulos below this threshold rolls are checked against a bit mask,
    // thus allowing betting on any combination of outcomes. For example, given
    // modulo 6 for dice, 101000 mask (base-2, big endian) means betting on
    // 4 and 6; for games with modulos higher than threshold (Etheroll), a simple
    // limit is used, allowing betting on any outcome in [0, N) range.
    //
    // The specific value is dictated by the fact that 256-bit intermediate
    // multiplication result allows implementing population count efficiently
    // for numbers that are up to 42 bits, and 40 is the highest multiple of
    // eight below 42.
    uint constant MAX_MASK_MODULO = 40;

    // This is a check on bet mask overflow.
    uint constant MAX_BET_MASK = 2 ** MAX_MASK_MODULO;

    // EVM BLOCKHASH opcode can query no further than 256 blocks into the
    // past. Given that settleBet uses block hash of placeBet as one of
    // complementary entropy sources, we cannot process bets older than this
    // threshold. On rare occasions tomodice.com croupier may fail to invoke
    // settleBet in this timespan due to technical issues or extreme Ethereum
    // congestion; such bets can be refunded via invoking refundBet.
    uint constant BET_EXPIRATION_BLOCKS = 250;

    // Some deliberately invalid address to initialize the secret signer with.
    // Forces maintainers to invoke setSecretSigner before processing any bets.
    address constant DUMMY_ADDRESS = 0xEeeeeEeeeEeEeeEeEeEeeEEEeeeeEeeeeeeeEEeE;

    // Standard contract ownership transfer.
    address payable public owner;
    address payable private nextOwner;

    // Adjustable max bet profit. Used to cap bets against dynamic odds.
    uint public maxProfit;

    // The address corresponding to a private key used to sign placeBet commits.
    address public secretSigner;

    // Accumulated jackpot fund.
    uint128 public jackpotSize;

    // Funds that are locked in potentially winning bets. Prevents contract from
    // committing to bets it cannot pay out.
    uint128 public lockedInBets;

    // A structure representing a single bet.
    struct Bet {
        // Wager amount in wei.
        uint amount;
        // Modulo of a game.
        uint8 modulo;
        // Number of winning outcomes, used to compute winning payment (* modulo/rollUnder),
        // and used instead of mask for games with modulo > MAX_MASK_MODULO.
        uint8 rollUnder;
        // Block number of placeBet tx.
        uint40 placeBlockNumber;
        // Bit mask representing winning bet outcomes (see MAX_MASK_MODULO comment).
        uint40 mask;
        // Address of a gambler, used to pay out winning bets.
        address payable gambler;
    }

    // Mapping from commits to all currently active & processed bets.
    mapping (uint => Bet) bets;

    // Croupier account.
    address public croupier;

    // Events that are issued to make statistic recovery easier.
    event FailedPayment(address indexed beneficiary, uint amount);
    event Payment(address indexed beneficiary, uint amount);
    event JackpotPayment(address indexed beneficiary, uint amount);

    // This event is emitted in placeBet to record commit in the logs.
    event Commit(uint commit);

    // Constructor. Deliberately does not take any parameters.
    constructor () public {
        owner = msg.sender;
        secretSigner = DUMMY_ADDRESS;
        croupier = DUMMY_ADDRESS;
    }

    // Standard modifier on methods invokable only by contract owner.
    modifier onlyOwner {
        require (msg.sender == owner, "OnlyOwner methods called by non-owner.");
        _;
    }

    // Standard modifier on methods invokable only by contract owner.
    modifier onlyCroupier {
        require (msg.sender == croupier, "OnlyCroupier methods called by non-croupier.");
        _;
    }

    // Standard contract ownership transfer implementation,
    function approveNextOwner(address payable _nextOwner) external onlyOwner {
        require (_nextOwner != owner, "Cannot approve current owner.");
        nextOwner = _nextOwner;
    }

    function acceptNextOwner() external {
        require (msg.sender == nextOwner, "Can only accept preapproved new owner.");
        owner = nextOwner;
    }

    // Fallback function deliberately left empty. It's primary use case
    // is to top up the bank roll.
    function () external payable {
    }

    // See comment for "secretSigner" variable.
    function setSecretSigner(address newSecretSigner) external onlyOwner {
        secretSigner = newSecretSigner;
    }

    // Change the croupier address.
    function setCroupier(address newCroupier) external onlyOwner {
        croupier = newCroupier;
    }

    // Change max bet reward. Setting this to zero effectively disables betting.
    function setMaxProfit(uint _maxProfit) public onlyOwner {
        require (_maxProfit < MAX_AMOUNT, "maxProfit should be a sane number.");
        maxProfit = _maxProfit;
    }

    // This function is used to bump up the jackpot fund. Cannot be used to lower it.
    function increaseJackpot(uint increaseAmount) external onlyOwner {
        require (increaseAmount <= address(this).balance, "Increase amount larger than balance.");
        require (jackpotSize + lockedInBets + increaseAmount <= address(this).balance, "Not enough funds.");
        jackpotSize += uint128(increaseAmount);
    }

    // Funds withdrawal to cover costs of tomodice.com operation.
    function withdrawFunds(address payable beneficiary, uint withdrawAmount) external onlyOwner {
        require (withdrawAmount <= address(this).balance, "Increase amount larger than balance.");
        require (jackpotSize + lockedInBets + withdrawAmount <= address(this).balance, "Not enough funds.");
        sendFunds(beneficiary, withdrawAmount, withdrawAmount);
    }

    // Contract may be destroyed only when there are no ongoing bets,
    // either settled or refunded. All funds are transferred to contract owner.
    function kill() external onlyOwner {
        require (lockedInBets == 0, "All bets should be processed (settled or refunded) before self-destruct.");
        selfdestruct(owner);
    }

    /// *** Betting logic

    // Bet states:
    //  amount == 0 && gambler == 0 - 'clean' (can place a bet)
    //  amount != 0 && gambler != 0 - 'active' (can be settled or refunded)
    //  amount == 0 && gambler != 0 - 'processed' (can clean storage)
    //
    //  NOTE: Storage cleaning is not implemented in this contract version; it will be added
    //        with the next upgrade to prevent polluting Ethereum state with expired bets.

    // Bet placing transaction - issued by the player.
    //  betMask         - bet outcomes bit mask for modulo <= MAX_MASK_MODULO,
    //                    [0, betMask) for larger modulos.
    //  modulo          - game modulo.
    //  commitLastBlock - number of the maximum block where "commit" is still considered valid.
    //  commit          - Keccak256 hash of some secret "reveal" random number, to be supplied
    //                    by the tomodice.com croupier bot in the settleBet transaction. Supplying
    //                    "commit" ensures that "reveal" cannot be changed behind the scenes
    //                    after placeBet have been mined.
    //  r, s            - components of ECDSA signature of (commitLastBlock, commit). v is
    //                    guaranteed to always equal 27.
    //
    // Commit, being essentially random 256-bit number, is used as a unique bet identifier in
    // the 'bets' mapping.
    //
    // Commits are signed with a block limit to ensure that they are used at most once - otherwise
    // it would be possible for a miner to place a bet with a known commit/reveal pair and tamper
    // with the blockhash. Croupier guarantees that commitLastBlock will always be not greater than
    // placeBet block number plus BET_EXPIRATION_BLOCKS. See whitepaper for details.
    function placeBet(uint betMask, uint modulo, uint commitLastBlock, uint commit, bytes32 r, bytes32 s) external payable {
        // Check that the bet is in 'clean' state.
        Bet storage bet = bets[commit];
        require (bet.gambler == address(0), "Bet should be in a 'clean' state.");

        // Validate input data ranges.
        uint amount = msg.value;
        require (modulo > 1 && modulo <= MAX_MODULO, "Modulo should be within range.");
        require (amount >= MIN_BET && amount <= MAX_AMOUNT, "Amount should be within range.");
        require (betMask > 0 && betMask < MAX_BET_MASK, "Mask should be within range.");

        // Check that commit is valid - it has not expired and its signature is valid.
        require (block.number <= commitLastBlock, "Commit has expired.");
        bytes32 signatureHash = keccak256(abi.encodePacked(uint40(commitLastBlock), commit));
        require (secretSigner == ecrecover(signatureHash, 27, r, s), "ECDSA signature is not valid.");

        uint rollUnder;
        uint mask;

        if (modulo <= MAX_MASK_MODULO) {
            // Small modulo games specify bet outcomes via bit mask.
            // rollUnder is a number of 1 bits in this mask (population count).
            // This magic looking formula is an efficient way to compute population
            // count on EVM for numbers below 2**40. For detailed proof consult
            // the tomodice.com whitepaper.
            rollUnder = ((betMask * POPCNT_MULT) & POPCNT_MASK) % POPCNT_MODULO;
            mask = betMask;
        } else {
            // Larger modulos specify the right edge of half-open interval of
            // winning bet outcomes.
            require (betMask > 0 && betMask <= modulo, "High modulo range, betMask larger than modulo.");
            rollUnder = betMask;
        }

        // Winning amount and jackpot increase.
        uint possibleWinAmount;
        uint jackpotFee;

        (possibleWinAmount, jackpotFee) = getDiceWinAmount(amount, modulo, rollUnder);

        // Enforce max profit limit.
        require (possibleWinAmount <= amount + maxProfit, "maxProfit limit violation.");

        // Lock funds.
        lockedInBets += uint128(possibleWinAmount);
        jackpotSize += uint128(jackpotFee);

        // Check whether contract has enough funds to process this bet.
        require (jackpotSize + lockedInBets <= address(this).balance, "Cannot afford to lose this bet.");

        // Record commit in logs.
        emit Commit(commit);

        // Store bet parameters on blockchain.
        bet.amount = amount;
        bet.modulo = uint8(modulo);
        bet.rollUnder = uint8(rollUnder);
        bet.placeBlockNumber = uint40(block.number);
        bet.mask = uint40(mask);
        bet.gambler = msg.sender;
    }

    // This is the method used to settle 99% of bets. To process a bet with a specific
    // "commit", settleBet should supply a "reveal" number that would Keccak256-hash to
    // "commit". "blockHash" is the block hash of placeBet block as seen by croupier; it
    // is additionally asserted to prevent changing the bet outcomes on Ethereum reorgs.
    function settleBet(uint reveal, bytes32 blockHash) external onlyCroupier {
        uint commit = uint(keccak256(abi.encodePacked(reveal)));

        Bet storage bet = bets[commit];
        uint placeBlockNumber = bet.placeBlockNumber;

        // Check that bet has not expired yet (see comment to BET_EXPIRATION_BLOCKS).
        require (block.number > placeBlockNumber, "settleBet in the same block as placeBet, or before.");
        require (block.number <= placeBlockNumber + BET_EXPIRATION_BLOCKS, "Blockhash can't be queried by EVM.");
        require (blockhash(placeBlockNumber) == blockHash);

        // Settle bet using reveal and blockHash as entropy sources.
        settleBetCommon(bet, reveal, blockHash);
    }

    // This method is used to settle a bet that was mined into an uncle block. At this
    // point the player was shown some bet outcome, but the blockhash at placeBet height
    // is different because of Ethereum chain reorg. We supply a full merkle proof of the
    // placeBet transaction receipt to provide untamperable evidence that uncle block hash
    // indeed was present on-chain at some point.
    function settleBetUncleMerkleProof(uint reveal, uint40 canonicalBlockNumber) external onlyCroupier {
        // "commit" for bet settlement can only be obtained by hashing a "reveal".
        uint commit = uint(keccak256(abi.encodePacked(reveal)));

        Bet storage bet = bets[commit];

        // Check that canonical block hash can still be verified.
        require (block.number <= canonicalBlockNumber + BET_EXPIRATION_BLOCKS, "Blockhash can't be queried by EVM.");

        // Verify placeBet receipt.
        requireCorrectReceipt(4 + 32 + 32 + 4);

        // Reconstruct canonical & uncle block hashes from a receipt merkle proof, verify them.
        bytes32 canonicalHash;
        bytes32 uncleHash;
        (canonicalHash, uncleHash) = verifyMerkleProof(commit, 4 + 32 + 32);
        require (blockhash(canonicalBlockNumber) == canonicalHash);

        // Settle bet using reveal and uncleHash as entropy sources.
        settleBetCommon(bet, reveal, uncleHash);
    }

    // Common settlement code for settleBet & settleBetUncleMerkleProof.
    function settleBetCommon(Bet storage bet, uint reveal, bytes32 entropyBlockHash) private {
        // Fetch bet parameters into local variables (to save gas).
        uint amount = bet.amount;
        uint modulo = bet.modulo;
        uint rollUnder = bet.rollUnder;
        address payable gambler = bet.gambler;

        // Check that bet is in 'active' state.
        require (amount != 0, "Bet should be in an 'active' state");

        // Move bet into 'processed' state already.
        bet.amount = 0;

        // The RNG - combine "reveal" and blockhash of placeBet using Keccak256. Miners
        // are not aware of "reveal" and cannot deduce it from "commit" (as Keccak256
        // preimage is intractable), and house is unable to alter the "reveal" after
        // placeBet have been mined (as Keccak256 collision finding is also intractable).
        bytes32 entropy = keccak256(abi.encodePacked(reveal, entropyBlockHash));

        // Do a roll by taking a modulo of entropy. Compute winning amount.
        uint dice = uint(entropy) % modulo;

        uint diceWinAmount;
        uint _jackpotFee;
        (diceWinAmount, _jackpotFee) = getDiceWinAmount(amount, modulo, rollUnder);

        uint diceWin = 0;
        uint jackpotWin = 0;

        // Determine dice outcome.
        if (modulo <= MAX_MASK_MODULO) {
            // For small modulo games, check the outcome against a bit mask.
            if ((2 ** dice) & bet.mask != 0) {
                diceWin = diceWinAmount;
            }

        } else {
            // For larger modulos, check inclusion into half-open interval.
            if (dice < rollUnder) {
                diceWin = diceWinAmount;
            }

        }

        // Unlock the bet amount, regardless of the outcome.
        lockedInBets -= uint128(diceWinAmount);

        // Roll for a jackpot (if eligible).
        if (amount >= MIN_JACKPOT_BET) {
            // The second modulo, statistically independent from the "main" dice roll.
            // Effectively you are playing two games at once!
            uint jackpotRng = (uint(entropy) / modulo) % JACKPOT_MODULO;

            // Bingo!
            if (jackpotRng == 0) {
                jackpotWin = jackpotSize;
                jackpotSize = 0;
            }
        }

        // Log jackpot win.
        if (jackpotWin > 0) {
            emit JackpotPayment(gambler, jackpotWin);
        }

        // Send the funds to gambler.
        sendFunds(gambler, diceWin + jackpotWin == 0 ? 1 wei : diceWin + jackpotWin, diceWin);
    }

    // Refund transaction - return the bet amount of a roll that was not processed in a
    // due timeframe. Processing such blocks is not possible due to EVM limitations (see
    // BET_EXPIRATION_BLOCKS comment above for details). In case you ever find yourself
    // in a situation like this, just contact the tomodice.com support, however nothing
    // precludes you from invoking this method yourself.
    function refundBet(uint commit) external {
        // Check that bet is in 'active' state.
        Bet storage bet = bets[commit];
        uint amount = bet.amount;

        require (amount != 0, "Bet should be in an 'active' state");

        // Check that bet has already expired.
        require (block.number > bet.placeBlockNumber + BET_EXPIRATION_BLOCKS, "Blockhash can't be queried by EVM.");

        // Move bet into 'processed' state, release funds.
        bet.amount = 0;

        uint diceWinAmount;
        uint jackpotFee;
        (diceWinAmount, jackpotFee) = getDiceWinAmount(amount, bet.modulo, bet.rollUnder);

        lockedInBets -= uint128(diceWinAmount);
        jackpotSize -= uint128(jackpotFee);

        // Send the refund.
        sendFunds(bet.gambler, amount, amount);
    }

    // Get the expected win amount after house edge is subtracted.
    function getDiceWinAmount(uint amount, uint modulo, uint rollUnder) private pure returns (uint winAmount, uint jackpotFee) {
        require (0 < rollUnder && rollUnder <= modulo, "Win probability out of range.");

        jackpotFee = amount >= MIN_JACKPOT_BET ? JACKPOT_FEE : 0;

        uint houseEdge = amount * HOUSE_EDGE_PERCENT / 100;

        if (houseEdge < HOUSE_EDGE_MINIMUM_AMOUNT) {
            houseEdge = HOUSE_EDGE_MINIMUM_AMOUNT;
        }

        require (houseEdge + jackpotFee <= amount, "Bet doesn't even cover house edge.");
        winAmount = (amount - houseEdge - jackpotFee) * modulo / rollUnder;
    }

    // Helper routine to process the payment.
    function sendFunds(address payable beneficiary, uint amount, uint successLogAmount) private {
        if (beneficiary.send(amount)) {
            emit Payment(beneficiary, successLogAmount);
        } else {
            emit FailedPayment(beneficiary, amount);
        }
    }

    // This are some constants making O(1) population count in placeBet possible.
    // See whitepaper for intuition and proofs behind it.
    uint constant POPCNT_MULT = 0x0000000000002000000000100000000008000000000400000000020000000001;
    uint constant POPCNT_MASK = 0x0001041041041041041041041041041041041041041041041041041041041041;
    uint constant POPCNT_MODULO = 0x3F;

    // *** Merkle proofs.

    // This helpers are used to verify cryptographic proofs of placeBet inclusion into
    // uncle blocks. They are used to prevent bet outcome changing on Ethereum reorgs without
    // compromising the security of the smart contract. Proof data is appended to the input data
    // in a simple prefix length format and does not adhere to the ABI.
    // Invariants checked:
    //  - receipt trie entry contains a (1) successful transaction (2) directed at this smart
    //    contract (3) containing commit as a payload.
    //  - receipt trie entry is a part of a valid merkle proof of a block header
    //  - the block header is a part of uncle list of some block on canonical chain
    // The implementation is optimized for gas cost and relies on the specifics of Ethereum internal data structures.
    // Read the whitepaper for details.

    // Helper to verify a full merkle proof starting from some seedHash (usually commit). "offset" is the location of the proof
    // beginning in the calldata.
    function verifyMerkleProof(uint seedHash, uint offset) pure private returns (bytes32 blockHash, bytes32 uncleHash) {
        // (Safe) assumption - nobody will write into RAM during this method invocation.
        uint scratchBuf1;  assembly { scratchBuf1 := mload(0x40) }

        uint uncleHeaderLength; uint blobLength; uint shift; uint hashSlot;

        // Verify merkle proofs up to uncle block header. Calldata layout is:
        //  - 2 byte big-endian slice length
        //  - 2 byte big-endian offset to the beginning of previous slice hash within the current slice (should be zeroed)
        //  - followed by the current slice verbatim
        for (;; offset += blobLength) {
            assembly { blobLength := and(calldataload(sub(offset, 30)), 0xffff) }
            if (blobLength == 0) {
                // Zero slice length marks the end of uncle proof.
                break;
            }

            assembly { shift := and(calldataload(sub(offset, 28)), 0xffff) }
            require (shift + 32 <= blobLength, "Shift bounds check.");

            offset += 4;
            assembly { hashSlot := calldataload(add(offset, shift)) }
            require (hashSlot == 0, "Non-empty hash slot.");

            assembly {
                calldatacopy(scratchBuf1, offset, blobLength)
                mstore(add(scratchBuf1, shift), seedHash)
                seedHash := keccak256(scratchBuf1, blobLength)
                uncleHeaderLength := blobLength
            }
        }

        // At this moment the uncle hash is known.
        uncleHash = bytes32(seedHash);

        // Construct the uncle list of a canonical block.
        uint scratchBuf2 = scratchBuf1 + uncleHeaderLength;
        uint unclesLength; assembly { unclesLength := and(calldataload(sub(offset, 28)), 0xffff) }
        uint unclesShift;  assembly { unclesShift := and(calldataload(sub(offset, 26)), 0xffff) }
        require (unclesShift + uncleHeaderLength <= unclesLength, "Shift bounds check.");

        offset += 6;
        assembly { calldatacopy(scratchBuf2, offset, unclesLength) }
        memcpy(scratchBuf2 + unclesShift, scratchBuf1, uncleHeaderLength);

        assembly { seedHash := keccak256(scratchBuf2, unclesLength) }

        offset += unclesLength;

        // Verify the canonical block header using the computed sha3Uncles.
        assembly {
            blobLength := and(calldataload(sub(offset, 30)), 0xffff)
            shift := and(calldataload(sub(offset, 28)), 0xffff)
        }
        require (shift + 32 <= blobLength, "Shift bounds check.");

        offset += 4;
        assembly { hashSlot := calldataload(add(offset, shift)) }
        require (hashSlot == 0, "Non-empty hash slot.");

        assembly {
            calldatacopy(scratchBuf1, offset, blobLength)
            mstore(add(scratchBuf1, shift), seedHash)
            // At this moment the canonical block hash is known.
            blockHash := keccak256(scratchBuf1, blobLength)
        }
    }

    // Helper to check the placeBet receipt. "offset" is the location of the proof beginning in the calldata.
    // RLP layout: [triePath, str([status, cumGasUsed, bloomFilter, [[address, [topics], data]])]
    function requireCorrectReceipt(uint offset) view private {
        uint leafHeaderByte; assembly { leafHeaderByte := byte(0, calldataload(offset)) }

        require (leafHeaderByte >= 0xf7, "Receipt leaf longer than 55 bytes.");
        offset += leafHeaderByte - 0xf6;

        uint pathHeaderByte; assembly { pathHeaderByte := byte(0, calldataload(offset)) }

        if (pathHeaderByte <= 0x7f) {
            offset += 1;

        } else {
            require (pathHeaderByte >= 0x80 && pathHeaderByte <= 0xb7, "Path is an RLP string.");
            offset += pathHeaderByte - 0x7f;
        }

        uint receiptStringHeaderByte; assembly { receiptStringHeaderByte := byte(0, calldataload(offset)) }
        require (receiptStringHeaderByte == 0xb9, "Receipt string is always at least 256 bytes long, but less than 64k.");
        offset += 3;

        uint receiptHeaderByte; assembly { receiptHeaderByte := byte(0, calldataload(offset)) }
        require (receiptHeaderByte == 0xf9, "Receipt is always at least 256 bytes long, but less than 64k.");
        offset += 3;

        uint statusByte; assembly { statusByte := byte(0, calldataload(offset)) }
        require (statusByte == 0x1, "Status should be success.");
        offset += 1;

        uint cumGasHeaderByte; assembly { cumGasHeaderByte := byte(0, calldataload(offset)) }
        if (cumGasHeaderByte <= 0x7f) {
            offset += 1;

        } else {
            require (cumGasHeaderByte >= 0x80 && cumGasHeaderByte <= 0xb7, "Cumulative gas is an RLP string.");
            offset += cumGasHeaderByte - 0x7f;
        }

        uint bloomHeaderByte; assembly { bloomHeaderByte := byte(0, calldataload(offset)) }
        require (bloomHeaderByte == 0xb9, "Bloom filter is always 256 bytes long.");
        offset += 256 + 3;

        uint logsListHeaderByte; assembly { logsListHeaderByte := byte(0, calldataload(offset)) }
        require (logsListHeaderByte == 0xf8, "Logs list is less than 256 bytes long.");
        offset += 2;

        uint logEntryHeaderByte; assembly { logEntryHeaderByte := byte(0, calldataload(offset)) }
        require (logEntryHeaderByte == 0xf8, "Log entry is less than 256 bytes long.");
        offset += 2;

        uint addressHeaderByte; assembly { addressHeaderByte := byte(0, calldataload(offset)) }
        require (addressHeaderByte == 0x94, "Address is 20 bytes long.");

        uint logAddress; assembly { logAddress := and(calldataload(sub(offset, 11)), 0xffffffffffffffffffffffffffffffffffffffff) }
        require (logAddress == uint(address(this)));
    }

    // Memory copy.
    function memcpy(uint dest, uint src, uint len) pure private {
        // Full 32 byte words
        for(; len >= 32; len -= 32) {
            assembly { mstore(dest, mload(src)) }
            dest += 32; src += 32;
        }

        // Remaining bytes
        uint mask = 256 ** (32 - len) - 1;
        assembly {
            let srcpart := and(mload(src), not(mask))
            let destpart := and(mload(dest), mask)
            mstore(dest, or(destpart, srcpart))
        }
    }
}

    Contract ABI  
[{"constant":false,"inputs":[],"name":"kill","outputs":[],"payable":false,"stateMutability":"nonpayable","type":"function"},{"constant":true,"inputs":[],"name":"secretSigner","outputs":[{"name":"","type":"address"}],"payable":false,"stateMutability":"view","type":"function"},{"constant":true,"inputs":[],"name":"jackpotSize","outputs":[{"name":"","type":"uint128"}],"payable":false,"stateMutability":"view","type":"function"},{"constant":false,"inputs":[{"name":"betMask","type":"uint256"},{"name":"modulo","type":"uint256"},{"name":"commitLastBlock","type":"uint256"},{"name":"commit","type":"uint256"},{"name":"r","type":"bytes32"},{"name":"s","type":"bytes32"}],"name":"placeBet","outputs":[],"payable":true,"stateMutability":"payable","type":"function"},{"constant":true,"inputs":[],"name":"croupier","outputs":[{"name":"","type":"address"}],"payable":false,"stateMutability":"view","type":"function"},{"constant":false,"inputs":[{"name":"reveal","type":"uint256"},{"name":"canonicalBlockNumber","type":"uint40"}],"name":"settleBetUncleMerkleProof","outputs":[],"payable":false,"stateMutability":"nonpayable","type":"function"},{"constant":true,"inputs":[],"name":"owner","outputs":[{"name":"","type":"address"}],"payable":false,"stateMutability":"view","type":"function"},{"constant":true,"inputs":[],"name":"maxProfit","outputs":[{"name":"","type":"uint256"}],"payable":false,"stateMutability":"view","type":"function"},{"constant":false,"inputs":[{"name":"beneficiary","type":"address"},{"name":"withdrawAmount","type":"uint256"}],"name":"withdrawFunds","outputs":[],"payable":false,"stateMutability":"nonpayable","type":"function"},{"constant":false,"inputs":[{"name":"reveal","type":"uint256"},{"name":"blockHash","type":"bytes32"}],"name":"settleBet","outputs":[],"payable":false,"stateMutability":"nonpayable","type":"function"},{"constant":false,"inputs":[],"name":"acceptNextOwner","outputs":[],"payable":false,"stateMutability":"nonpayable","type":"function"},{"constant":false,"inputs":[{"name":"_nextOwner","type":"address"}],"name":"approveNextOwner","outputs":[],"payable":false,"stateMutability":"nonpayable","type":"function"},{"constant":false,"inputs":[{"name":"increaseAmount","type":"uint256"}],"name":"increaseJackpot","outputs":[],"payable":false,"stateMutability":"nonpayable","type":"function"},{"constant":false,"inputs":[{"name":"newSecretSigner","type":"address"}],"name":"setSecretSigner","outputs":[],"payable":false,"stateMutability":"nonpayable","type":"function"},{"constant":true,"inputs":[],"name":"lockedInBets","outputs":[{"name":"","type":"uint128"}],"payable":false,"stateMutability":"view","type":"function"},{"constant":false,"inputs":[{"name":"commit","type":"uint256"}],"name":"refundBet","outputs":[],"payable":false,"stateMutability":"nonpayable","type":"function"},{"constant":false,"inputs":[{"name":"newCroupier","type":"address"}],"name":"setCroupier","outputs":[],"payable":false,"stateMutability":"nonpayable","type":"function"},{"constant":false,"inputs":[{"name":"_maxProfit","type":"uint256"}],"name":"setMaxProfit","outputs":[],"payable":false,"stateMutability":"nonpayable","type":"function"},{"inputs":[],"payable":false,"stateMutability":"nonpayable","type":"constructor"},{"payable":true,"stateMutability":"payable","type":"fallback"},{"anonymous":false,"inputs":[{"indexed":true,"name":"beneficiary","type":"address"},{"indexed":false,"name":"amount","type":"uint256"}],"name":"FailedPayment","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"name":"beneficiary","type":"address"},{"indexed":false,"name":"amount","type":"uint256"}],"name":"Payment","type":"event"},{"anonymous":false,"inputs":[{"indexed":true,"name":"beneficiary","type":"address"},{"indexed":false,"name":"amount","type":"uint256"}],"name":"JackpotPayment","type":"event"},{"anonymous":false,"inputs":[{"indexed":false,"name":"commit","type":"uint256"}],"name":"Commit","type":"event"}]

  Contract Creation Code Switch To Opcodes View


   Swarm Source:
bzzr://ba6c818b66d431ce2bcc7222d9bbf5b90a5d8681e4ce0c59ee848ea441fff06d

 

View All
Block Age transaction Difficulty GasUsed Reward
View All
Block Age UncleNumber Difficulty GasUsed Reward