Claiming Rewards from the Reward Pot

[lazovicff]

Closes #95

Reward payout

Storage variables:

• Global reward payout counter - globalRewardPayoutCount
• Active reward payouts - activeRewardPayouts
• User reward payout counter mapping - userRewardPayoutCount
• Reward payout cycles mapping - rewardPayoutCycles

Implemented functions for:

• starting the payout cycle - startNextRewardPayout
• claiming reward payout - claimRewardPayout
• waiving reward - waiveRewardPayout
• moving remaining funds after payout - moveRemainingRewardPayoutFunds
• getting the info about payout - getRewardPayoutInfo

Starting the payout cycle

Takes one argument: token address

Saving all the necessary data to rewardPayoutCycles (current root hash, current total tokens, reward pot balance, token, current block number).
Incrementing globalRewardPayoutCount and using it for mapping key.
Setting payout token to active, which will not allow creation of new payouts with the same token until the current one finishes.

Claiming the reward payout

Takes three arguments: payout id, user reputation, colony-wide reputation

Can be called only if reward payout is active i.e if its created less than 60 days ago.
Can be called only if payout is not claimed, i.e if payoutId - userRewardPayoutCount = 1 (To force the user to claim the payout that is next in queue, otherwise there would be a lot of problems).

Calculating amount to be send to user according to formula defined in the whitepaper.

Incrementing userRewardPayoutCount.
Sending the user the calculated amount.

Waiving reward payout

Takes one argument: number of payouts to waive

Can only be called if user has not claimed that reward i.e if payoutId - userRewardPayoutCount = 1.

Incrementing userRewardPayoutCount.

Moving remaining funds after payout

Can be called only if payout is finished i.e if its created more than 60 days ago.
Setting payout token to inactive. This will allow creation of reward payout with that token.

Moves remaining funds to pot 0.

Getting the info about the payout

Takes one argument: payout id

Getting the useful information about the payout for UI.

[area]

Regarding the custom fork of ganache, it's better to use block.timestamp rather than the number of blocks to measure duration on chain - with hardforks, block times can change and may do so drastically when PoS arrived. I realise the whitepaper says 500k blocks, but frankly that is a holdover from us being idiots and not knowing any better. Replace this with sixty days, which I imagine is what we were aiming for in the first place.

I hope the delving you did in to ganache was educational though! It's been a while since I got grubby in its internals, but I learned a lot when I did so.

[area]

Arguably, it should be possible for a user to waive multiple payouts at once - if they've been away for a long time, maybe there are lots for them to waive.

[area]

Document the properties of this struct.

[area]

1. The tokens used to work out the reward a user is entitled to should be the colony tokens they hold in the colony paying out the reward, not the tokens of the type being paid out that they already hold.

2. I hadn't considered removing the colony tokens held by the colony from consideration from this calculation. I think that this will give strictly better behaviour than what was spec'd (everyone should get slightly more rewards than they would have done before - i.e. there will be less left over and returned to the pot). Very nice!

[area]

The approximations with the payout function is to be expected - even if the calculation could be done precisely on-chain, the payouts could not. I suspect what you've done is accurate enough, but maybe test with very small numbers for both the tokens and the reputation is in order just to see how bad it can be.

Parallel payouts with one token is an interesting one. I like that you've taken that possibility in to account so far; given that an additional mapping would be required, and we want to encourage payouts to be fairly infrequent, I think I'm okay with disallowing it. I will check with some others and confirm.

[lazovicff]

Playing with ganache was useful, although the code was rusty.

Thanks for the feedback. I'm just not sure what you meant by:

even if the calculation could be done precisely on-chain, the payouts could not

[area]

Thanks for the feedback. I'm just not sure what you meant by:

even if the calculation could be done precisely on-chain, the payouts could not

Just that there is a smallest indivisible token unit on-chain, so even if the calculation could be done precisely and required, for example, .1 tokens to be paid out, we couldn't do that.

[area]

This comment should talk about time, not blocks.

[area]

Again, 60 days

[area]

block.timestamp is in seconds, not milliseconds. So this is actually 60000 days! While technically you won't need to change the tests (their very large numbers will still take us past the reward payout window once this is fixed), I'd prefer it if they were changed too.

[lazovicff]

Sorry, i should have checked the documentation.

[area]

uint256 can hold up to a 78 digit number in base 10, so this can underflow to a very large value, which I'm not terribly happy with. I think the worse case scenario there is that reward ends up being zero (i.e. someone gets less than they should, rather than more than they should), but users would be pretty annoyed about that. Did this implementation come from anywhere in particular? Why did you choose 76?

[lazovicff]

I thought it was 77 (idiot me), and 1 will be added in SafeMath.percent. Which is not good, anyway.
About the underflows and overflows i was not so sure, thats why i didn't added the tests for more extreme values.
We can can continue this on Gitter, i just realized a few more things.

[area]

I like these tests! Can we have more of them, for even more extreme values? 😃

[lazovicff]

Sure, i just deleted them because i was getting 0 reward (As you mentioned above)

[area]

It also feels like I would be able to cook up an overflow here.

[area]

Can we print out how close we were explicitly for these tests?

[lazovicff]

@area Can you take a look at this?

[elenadimitrova]

I'd argue to not return anything out of that function and instead get the payoutId via emitting an event out of the transaction itself. See https://github.com/JoinColony/colonyNetwork/blob/develop/test/colony-network-auction.js#L92

[area]

I like the choice of implementation 3 from the repository we had on the side; I think that implementation has the properties I'm happiest with. Two things about the tests are giving me pause though:

1. I like tests to be as deterministic as possible - no randomness! I also don't think we need this many; the important regimes to test are very small numbers (for accuracy) and very large ones (for overflow); I would expect to see tests using numbers like 1, 10, 1e76, 1e77 and not much in between.
2. The amount the solidity implementation is wrong by appears to be positive, which is definitely bad - if true, it'd mean that the last person to claim wouldn't be able to claim what was owed to them. That wasn't the case in the other repository, though, so something a little odd is going on here.

Finally, gas costs for this implementation are higher than I was hoping for. A way to reduce them is to have the user supply the values of the sqrt, which are then verified by squaring the passed claimed square root and checking that it is less than the original value. This calculation can be done automatically by our client, so it won't be more onerous for the user, and should reduce gas costs drastically.

[lazovicff]

1. Im ok with that.
2. I think you are wrong, otherwise the tests would fail. I explicitly added sqrt(denomerator) + 1 here in effort to avoid that. It seems like its doing the job, unless you know a case when it wont work.

Thanks for the hint about gas costs

** Update. Sorry, i see now that absolute wrong is in +. Probably calculation is not done right in tests, but there is enough for everybody

[elenadimitrova]

Just some notes on comments language:

• Pls use the non-gender specific their instead of his or hers. There may be women interacting with this contract you know :)

[elenadimitrova]

Comment mappings, arrays, global variables, everything really that is storage. As you see all other items, not just structs in ColonyStorage are commented.
Our current stand on documentation is that IColony and IColonyNetwork are the two interfaces we document plus the two respective storage contracts: ColonyStorage and ColonyNetworkStorage
In addition any other non-EtherRouter contracts (not covered by the above) are documented e.g. ReputationMiningCycle

[elenadimitrova]

when 60 days passed -> when 60 days have passed

[elenadimitrova]

senders tokens -> sender's tokens

[elenadimitrova]

"in token" implies in some Token contract, pls replace with "for" or just say "Start next _token reward payout"

[elenadimitrova]

Also here this reads weird

All funds in that are in reward pot at the time

Did you mean: "All funds in the reward pot will become unavailable"

[elenadimitrova]

I don't know what denomerator is in English did you mean denominator?