Reflection Token with O(1) Distribution: Audit and Deploy

We design and develop full-cycle blockchain solutions: from smart contract architecture to launching DeFi protocols, NFT marketplaces and crypto exchanges. Security audits, tokenomics, integration with existing infrastructure.
Showing 1 of 1All 1305 services
Reflection Token with O(1) Distribution: Audit and Deploy
Medium
~2-3 days
Frequently Asked Questions

Blockchain Development Services

Blockchain Development Stages

Latest works

  • image_website-b2b-advance_0.webp
    B2B ADVANCE company website development
    1349
  • image_web-applications_feedme_466_0.webp
    Development of a web application for FEEDME
    1247
  • image_websites_belfingroup_462_0.webp
    Website development for BELFINGROUP
    949
  • image_ecommerce_furnoro_435_0.webp
    Development of an online store for the company FURNORO
    1183
  • image_logo-advance_0.webp
    B2B Advance company logo design
    642
  • image_crm_enviok_479_0.webp
    Development of a web application for Enviok
    921

Imagine your smart contract stops working at 1000 holders, each transaction exhausts the gas limit — this is the reality of naive reflection implementations. Not long ago, a client came with a contract where the excluded array reached 500 addresses: any operation would exceed the gas limit. With over 5 years in blockchain development, we have implemented dozens of tokens with an O(1) algorithm that works regardless of holder count. We develop such tokens turnkey, including audit and gas optimization. Let's break down the mechanics, typical mistakes, and protective measures. Get a consultation from an engineer for your project.

How does a reflection token save gas?

The mechanism is based on two types of balances: rBalance (reflection balance) and tBalance (token balance). Holders store rBalance, which automatically grows with each transaction. Instead of redistributing tokens, the contract changes the conversion rate rBalance → tBalance by decreasing rTotal by the fee amount. This increases rate = rTotal / tTotal for all others. More details in Solidity (Solidity).

Full listing of ReflectionToken contract ```solidity contract ReflectionToken is IERC20, Ownable { uint256 private constant MAX = ~uint256(0);
uint256 private _tTotal;
uint256 private _rTotal;
uint256 private _tFeeTotal;

uint256 public taxFee = 5;
uint256 public liquidityFee = 3;
uint256 public burnFee = 2;

mapping(address => uint256) private _rOwned;
mapping(address => uint256) private _tOwned;
mapping(address => bool) private _isExcluded;

constructor(uint256 totalSupply) {
    _tTotal = totalSupply * 10**18;
    _rTotal = (MAX - (MAX % _tTotal));
    _rOwned[msg.sender] = _rTotal;
}

function _getRate() private view returns (uint256) {
    (uint256 rSupply, uint256 tSupply) = _getCurrentSupply();
    return rSupply / tSupply;
}

function _getCurrentSupply() private view returns (uint256, uint256) {
    uint256 rSupply = _rTotal;
    uint256 tSupply = _tTotal;
    
    for (uint256 i = 0; i < _excluded.length; i++) {
        if (_rOwned[_excluded[i]] > rSupply || _tOwned[_excluded[i]] > tSupply)
            return (_rTotal, _tTotal);
        rSupply -= _rOwned[_excluded[i]];
        tSupply -= _tOwned[_excluded[i]];
    }
    
    if (rSupply < _rTotal / _tTotal) return (_rTotal, _tTotal);
    return (rSupply, tSupply);
}

function balanceOf(address account) public view returns (uint256) {
    if (_isExcluded[account]) return _tOwned[account];
    return tokenFromReflection(_rOwned[account]);
}

function tokenFromReflection(uint256 rAmount) public view returns (uint256) {
    require(rAmount <= _rTotal, "Amount too large");
    return rAmount / _getRate();
}

function _transferStandard(address sender, address recipient, uint256 tAmount) private {
    (uint256 rAmount, uint256 rTransferAmount, uint256 rFee,
     uint256 tTransferAmount, uint256 tFee, uint256 tLiquidity, uint256 tBurn) 
        = _getValues(tAmount);
    
    _rOwned[sender] -= rAmount;
    _rOwned[recipient] += rTransferAmount;
    
    _reflectFee(rFee, tFee);
    _takeLiquidity(tLiquidity);
    _burn(sender, tBurn);
    
    emit Transfer(sender, recipient, tTransferAmount);
}

function _reflectFee(uint256 rFee, uint256 tFee) private {
    _rTotal -= rFee;
    _tFeeTotal += tFee;
}

}

</details>

Naive iteration over all holders consumes 50 times more gas than O(1) reflection. At 10,000 holders, one transaction can cost 5 million gas, while O(1) costs only 100 thousand. The O(1) implementation is more efficient than naive iteration in terms of gas, as confirmed by the table below.

### Why are excluded pool addresses critical?

Liquidity pool addresses (Uniswap pair, PancakeSwap pair) must be excluded from reflection. If the pool participates in reflection, its token balance constantly grows, disrupting the token/ETH ratio in the pool and creating arbitrage opportunities. This is a classic mistake in early reflection tokens. We include this point in every audit checklist.

```solidity
function excludeFromReward(address account) public onlyOwner {
    require(!_isExcluded[account], "Already excluded");
    if (_rOwned[account] > 0) {
        _tOwned[account] = tokenFromReflection(_rOwned[account]);
    }
    _isExcluded[account] = true;
    _excluded.push(account);
}

Comparison of O(1) and naive implementation: How much better?

Parameter Naive implementation (iteration) O(1) via reflection
Transaction complexity O(N) O(1)
Gas at 10,000 holders ~5,000,000 gas ~100,000 gas
Scalability Drops at >500 holders Unlimited
Risk of gas limit exceeded High None

O(1) implementation consumes 50 times less gas and is independent of holder count. Savings on transaction fees reach 90%. Order development of a reflection token — we will prepare a detailed plan in 7–14 days.

How to test a reflection token before deployment?

We use static analysis with Slither to identify code vulnerabilities, symbolic execution with Mythril to find error paths, and fuzzing with Echidna to verify correct distribution under random parameters. We also run integration tests on a mainnet fork to check gas limits and correctness of excluded addresses.

Vulnerabilities in reflection tokens and their prevention

  • Iteration over excluded: the _getCurrentSupply() function iterates over the excluded array. If the array is large — gas limit exceeded. We limit array length and allow only owner to add.
  • Precision loss: with a huge number of transactions, _rTotal can become too small, _getRate() returns 0. Invariant rTotal > tTotal * minRate is checked in tests.
  • Anti-whale measures: we add maxTransactionAmount (1% of supply) and maxWalletToken (2%).
uint256 public maxTxAmount = _tTotal / 100;
uint256 public maxWalletToken = _tTotal / 50;

function _transfer(address from, address to, uint256 amount) internal {
    require(amount <= maxTxAmount, "Exceeds max tx");
    if (!_isExcluded[to]) {
        require(balanceOf(to) + amount <= maxWalletToken, "Exceeds max wallet");
    }
    // ...
}

Typical fees and their purpose

Fee type Typical tax Purpose
Reflection 2–5% Reward holders
Liquidity 2–3% Automatic pool top-up
Burn 0–2% Supply deflation

Total fee should not exceed 8%, otherwise the token becomes economically dysfunctional.

How to implement a reflection token in 5 steps?

  1. Analytics and design: specification of mechanics (tax, liquidity, burn, anti-whale).
  2. Contract development in Solidity 0.8.x using Foundry or Hardhat.
  3. Testing: unit tests, fuzzing with Echidna, integration tests on mainnet fork to verify correct distribution and gas limits.
  4. Audit: static analysis with Slither + symbolic execution with Mythril according to a 30+ point checklist.
  5. Documentation and deployment support: help with liquidity pool selection and excluded address configuration.

What is included in turnkey reflection token development

  • Specification of mechanics (tax, liquidity, burn, anti-whale) with parameter justification.
  • Source code of the contract in Solidity 0.8.x with comments.
  • Set of unit tests and tests on mainnet fork.
  • Audit report with vulnerability analysis (Slither, Mythril, Echidna).
  • Deployment instructions and configuration of excluded pool addresses.
  • Support for 1 month after deployment.

Auto-liquidity mechanism: why is it needed?

Accumulated liquidityFee is periodically converted into LP tokens via a DEX. The inSwapAndLiquify flag prevents recursive calls. The mechanism maintains liquidity without team intervention, automatically adding pairs to decentralized exchanges.

We guarantee that the contract will pass checks for known vulnerabilities (reentrancy, flash loan attacks, precision loss). Get a consultation from an engineer for your project. Contact us for an assessment.

Token Development: ERC-20, Tokenomics, Vesting

We’ve seen more rekt tokens than we can count — not because the code was broken, but because the economic assumptions were naive. A token that doesn’t collapse from inflation in six months, where governance actually works, and vesting can’t be bypassed through delegation tricks — that’s real engineering. We build under that standard.

How We Avoid Common ERC-20 Pitfalls

ERC-20 standard has nine functions. Complexity starts with extensions:

ERC-20Permit (EIP-2612) — gasless approve via signature. User signs permit(owner, spender, value, deadline, v, r, s) off-chain, spender calls permit() + transferFrom() in one transaction. Removes separate approve step. Risk: signature can be intercepted — need deadline and nonce checking. We always implement EIP-712 typed structured data to prevent signature malleability.

ERC-20Votes (EIP-5805) — snapshot balances for governance. Checkpoint system stores balance history by block number. getPastVotes(address, blockNumber) returns balance at proposal creation, not current. Prevents flash loan governance: can't borrow tokens and vote in one transaction.

Rebasing tokens (stETH, Ampleforth) — balanceOf changes automatically through internal shares ratio. High integration complexity: most DeFi protocols don't work correctly with rebasing without non-rebasing wrapper. We've deployed wrappers that decouple balance from share price for Uniswap compatibility.

Fee-on-transfer tokens — percentage cut on every transfer. Breaks AMM calculations: pool receives less than expected. Uniswap v2/v3 don't support natively — needs special pair/router. We’ve built custom routers that handle fee-on-transfer tokens without reverting.

Why Tokenomics Sustainability Matters More Than Excel

Tokenomics isn't Excel table summing to 100%. It's incentive model that either works long-term or creates selling pressure killing the project.

Emission Schedule and Inflation — Fixed supply (Bitcoin model) works for store-of-value, but for utility tokens you need controlled inflation. Inflationary model (like Ethereum post-Merge) generates new tokens to incentivize participants. Key balance: emission should be <= value captured by protocol. If protocol earns $100k/month but emission is $500k/month in market value — constant selling pressure inevitable. We model these scenarios using Python simulations with cadCAD for complex systems.

Supply Distribution — No universal formula. Principle: no single entity >33% voting power at launch. Otherwise governance is fiction.

Category Typical Range Risk
Team + advisors 15–20% Dumping on unlock
Investors (seed, private) 15–25% Coordinated exit
Treasury / DAO 20–35% Governance capture
Ecosystem / grants 10–20% Inefficient allocation
Public sale / LBP 5–15% Undervaluation → whale capture
Liquidity provision 5–10% Mercenary capital

What Are the Most Critical Vesting Contract Mistakes?

Linear vesting with cliff is standard for team and investors. cliff is the period after TGE with zero availability. After cliff: linear unlock until duration. Typical implementation errors we catch in audit:

  • Revocable vesting without timelock — owner can revoke immediately. Solution: revocation through multisig + governance vote with 7-day delay.
  • Cliff doesn't block governance rights — with ERC-20Votes, recipient can delegate voting power from day one even if tokens aren't unlocked. We explicitly separate voting power from claim logic.
  • No emergency pause — if vesting contract vulnerability discovered, need ability to pause claims. Pausable + timelock on unpause.

We’ve seen a project where the cliff was set to 0 by mistake — team could dump immediately. Our fuzz tests catch such edge cases before deployment.

Vesting contract implementation details

Pausable and Ownable2Step from OpenZeppelin are standard. We add a 7-day timelock on revocation functions. All withdraw functions emit events for off-chain tracking. Fuzz tests verify that cumulative released amount never exceeds total allocation, even after multiple revocations or partial claims.

Why Is Liquidity Bootstrapping Crucial for Token Launch?

Launch mechanics are critical. Three main approaches:

  • Balancer LBP — temporary pool with high initial token weight (90/10 project-token/USDC) that automatically decreases to 50/50 over days. Creates downward price pressure preventing bot buys at one price. After LBP liquidity moves to permanent pool.
  • Fjord Foundry — specialized platform for LBP and fair launches. Less operational overhead than direct Balancer integration.
  • Uniswap v3 with limited range — add liquidity in narrow range around initial price. High capital efficiency but requires active range management.
  • TWAMM — mechanics for gradual large-order sales without slippage. Implemented in FraxSwap.

LBP is 3-5x better than standard AMM listing for price discovery; we’ve seen fair launches with 50% less initial dump compared to direct Uniswap listings.

Governance Tokens and Voting Mechanics

OpenZeppelin Governor is the standard. Modular: GovernorVotes for counting, GovernorTimelockControl for timelock execution, GovernorSettings for adjustable parameters. Quorum is minimum percentage of supply for voting validity. Compound set quorum at 400k COMP (4% supply). We set quorum dynamically based on historical participation to avoid apathy or whale capture.

Flash loan governance attack — attacker borrows tokens via flash loan, delegates to self, creates proposal or votes, returns tokens. ERC-20Votes with block-based snapshot completely blocks this: must have tokens at snapshot creation moment, not voting moment.

Delegation — small holders often don't vote. Liquid delegation (like Optimism) lets delegate voting power to addresses without transfer. Critical for protocols with many passive holders.

Token Type Use Case Our Stack
ERC-20 utility Payments, rewards, gas Solidity 0.8.x, OpenZeppelin 5.x
ERC-20Permit Gasless approvals EIP-2612, EIP-712
ERC-20Votes On-chain governance Governor, TimelockController
ERC-1155 Multi-token (NFT + fungible) Solidity, OpenZeppelin
Vesting contracts Team/investor lockup LinearVesting, CliffVesting

Token Development Stack

Contracts: Solidity 0.8.x, OpenZeppelin Contracts 5.x (ERC20, ERC20Permit, ERC20Votes, Governor, TimelockController, TokenVesting).
Tokenomics audit: Python models with emission/demand simulation, cadCAD for complex systems modeling.
Deployment and management: Foundry scripts, Gnosis Safe for treasury, OpenZeppelin Defender for automation.
Analytics: Dune Analytics for on-chain metrics, Token Terminal for protocol revenue.

What’s Included in the Work (Deliverables)

  • Tokenomics model with stress tests (bear market, whale exit, governance capture)
  • Contract development with Foundry fuzz tests (gas optimization, reentrancy tests, overflow checks)
  • Audit summary and list of edge cases covered
  • Deployment scripts with Gnosis Safe admin keys
  • Documentation for future upgrades and maintenance
  • 30-day post-launch monitoring support

Process

  1. Tokenomics design — supply model, allocation, emission schedule, vesting. Stress-test scenarios.
  2. Contract development — ERC-20 + extensions, vesting, governance. Foundry fuzz tests on vesting calculations, governance thresholds.
  3. Audit — special attention on governance attack vectors, vesting bypass, permit replay attacks. We use Slither and Echidna for formal verification.
  4. LBP / launch — choose mechanics, set parameters, monitor first 24 hours.
  5. Post-launch — monitor supply distribution via Dune, governance participation metrics, treasury management.

Timelines

  • ERC-20 with permit and basic governance: 2–3 weeks
  • Vesting contract with revocation and cliff: 2–4 weeks
  • Full governance (Governor + Timelock + Token): 4–7 weeks
  • Token + LBP + governance + vesting: 8–14 weeks

We can estimate your project within 24 hours after discussing requirements. Contact us to start the conversation — no obligation, just a technical chat about your token model. Get a detailed proposal tailored to your tokenomics and compliance needs.