Platform: Code4rena
Start Date: 09/12/2022
Pot Size: $36,500 USDC
Total HM: 9
Participants: 69
Period: 3 days
Judge: Picodes
Total Solo HM: 2
Id: 190
League: ETH
Rank: 56/69
Findings: 1
Award: $28.12
🌟 Selected for report: 0
🚀 Solo Findings: 0
🌟 Selected for report: 0xSmartContract
Also found by: 0Kage, 0x52, 0xAgro, 0xNazgul, 0xTraub, 0xhacksmithh, Awesome, Aymen0909, Bnke0x0, Englave, Janio, Mukund, Parth, RaymondFam, Rolezn, SmartSek, Tointer, UdarTeam, Udsen, Zarf, caventa, chaduke, csanuragjain, deliriusz, gz627, idkwhatimdoing, izhelyazkov, joestakey, neumo, obront, oyc_109, rvierdiiev, shark, trustindistrust, wait, yongskiws
28.124 USDC - $28.12
| Issue | Instances | |
|---|---|---|
| [NC-01] | Long Lines (> 120 Characters) | 45 |
| [NC-02] | NatSpec Comment Missing Tags | 38 |
| [NC-03] | Events Not Indexed | 33 |
| [NC-04] | Order of Functions Not Compliant With Solidity Docs | 18 |
| [NC-05] | Style Guide Voiding Whitespace (parenthesis/brackets/braces) | 8 |
| [NC-06] | Power of Ten Literal > 10e3 Not In Scientific Notation | 7 |
| [NC-07] | overriden Typo | 5 |
| [NC-08] | Style Guide Voiding If Structure Braces / Inconsistent If Style | 3 |
| [NC-09] | TODO Left In Production Code | 2 |
Lines with greater length than 120 characters are used. The Solidity Style Guide suggests that all lines should be 120 characters or less in width.
/apps/smart-contracts/core/contracts/Collateral.sol Links: 9, 27, 112.
9: contract Collateral is ICollateral, ERC20PermitUpgradeable, SafeAccessControlEnumerableUpgradeable, ReentrancyGuardUpgradeable { 27: bytes32 public constant SET_MANAGER_WITHDRAW_HOOK_ROLE = keccak256("Collateral_setManagerWithdrawHook(ICollateralHook)"); 112: function setManagerWithdrawHook(ICollateralHook _newManagerWithdrawHook) external override onlyRole(SET_MANAGER_WITHDRAW_HOOK_ROLE) {
/apps/smart-contracts/core/contracts/DepositHook.sol Links: 12, 22, 69, 71, 73, 75, 79.
12: contract DepositHook is IDepositHook, AccountListCaller, NFTScoreRequirement, TokenSenderCaller, SafeAccessControlEnumerable { 22: bytes32 public constant SET_COLLECTION_SCORES_ROLE = keccak256("DepositHook_setCollectionScores(IERC721[],uint256[])"); 69: function setAccountList(IAccountList accountList) public override onlyRole(SET_ACCOUNT_LIST_ROLE) { super.setAccountList(accountList); } 71: function setRequiredScore(uint256 _newRequiredScore) public override onlyRole(SET_REQUIRED_SCORE_ROLE) { super.setRequiredScore(_newRequiredScore); } 73: function setCollectionScores(IERC721[] memory _collections, uint256[] memory _scores) public override onlyRole(SET_COLLECTION_SCORES_ROLE) { super.setCollectionScores(_collections, _scores); } 75: function removeCollections(IERC721[] memory _collections) public override onlyRole(REMOVE_COLLECTIONS_ROLE) { super.removeCollections(_collections); } 79: function setTokenSender(ITokenSender _tokenSender) public override onlyRole(SET_TOKEN_SENDER_ROLE) { super.setTokenSender(_tokenSender); }
/apps/smart-contracts/core/contracts/DepositRecord.sol Links: 40, 61.
40: function setGlobalNetDepositCap(uint256 _newGlobalNetDepositCap) external override onlyRole(SET_GLOBAL_NET_DEPOSIT_CAP_ROLE) { 61: function getUserDepositAmount(address _account) external view override returns (uint256) { return userToDeposits[_account]; }
/apps/smart-contracts/core/contracts/DepositTradeHelper.sol Links: 22, 24, 28, 32.
22: function depositAndTrade(uint256 baseTokenAmount, Permit calldata baseTokenPermit, Permit calldata collateralPermit, OffChainTradeParams calldata tradeParams) external override { 24: IERC20Permit(address(_baseToken)).permit(msg.sender, address(this), type(uint256).max, baseTokenPermit.deadline, baseTokenPermit.v, baseTokenPermit.r, baseTokenPermit.s); 28: _collateral.permit(msg.sender, address(this), type(uint256).max, collateralPermit.deadline, collateralPermit.v, collateralPermit.r, collateralPermit.s); 32: ISwapRouter.ExactInputSingleParams memory exactInputSingleParams = ISwapRouter.ExactInputSingleParams(address(_collateral), tradeParams.tokenOut, POOL_FEE_TIER, msg.sender, tradeParams.deadline, _collateralAmountMinted, tradeParams.amountOutMinimum, tradeParams.sqrtPriceLimitX96);
/apps/smart-contracts/core/contracts/ManagerWithdrawHook.sol Links: 15, 17, 29, 41.
15: bytes32 public constant SET_MIN_RESERVE_PERCENTAGE_ROLE = keccak256("ManagerWithdrawHook_setMinReservePercentage(uint256)"); 17: function hook(address, uint256, uint256 _amountAfterFee) external view override { require(collateral.getReserve() - _amountAfterFee >= getMinReserve(), "reserve would fall below minimum"); } 29: function setMinReservePercentage(uint256 _newMinReservePercentage) external override onlyRole(SET_MIN_RESERVE_PERCENTAGE_ROLE) { 41: function getMinReserve() public view override returns (uint256) { return (depositRecord.getGlobalNetDepositAmount() * minReservePercentage) / PERCENT_DENOMINATOR; }
/apps/smart-contracts/core/contracts/MintHook.sol Links: 16, 18, 20.
16: function hook(address sender, uint256 amountBeforeFee, uint256 amountAfterFee) external virtual override onlyAllowedMsgSenders { require(_accountList.isIncluded(sender), "minter not allowed"); } 18: function setAllowedMsgSenders(IAccountList allowedMsgSenders) public virtual override onlyOwner { super.setAllowedMsgSenders(allowedMsgSenders); } 20: function setAccountList(IAccountList accountList) public virtual override onlyOwner { super.setAccountList(accountList); }
/apps/smart-contracts/core/contracts/PrePOMarket.sol Links: 42, 62.
42: constructor(address _governance, address _collateral, ILongShortToken _longToken, ILongShortToken _shortToken, uint256 _floorLongPayout, uint256 _ceilingLongPayout, uint256 _floorValuation, uint256 _ceilingValuation, uint256 _expiryTime) { 62: emit MarketCreated(address(_longToken), address(_shortToken), _floorLongPayout, _ceilingLongPayout, _floorValuation, _ceilingValuation, _expiryTime);
/apps/smart-contracts/core/contracts/PrePOMarketFactory.sol Links: 18, 20, 22, 25, 28, 41.
18: function isCollateralValid(address _collateral) external view override returns (bool) { return validCollateral[_collateral]; } 20: function getMarket(bytes32 _longShortHash) external view override returns (IPrePOMarket) { return IPrePOMarket(deployedMarkets[_longShortHash]); } 22: function createMarket(string memory _tokenNameSuffix, string memory _tokenSymbolSuffix, bytes32 longTokenSalt, bytes32 shortTokenSalt, address _governance, address _collateral, uint256 _floorLongPrice, uint256 _ceilingLongPrice, uint256 _floorValuation, uint256 _ceilingValuation, uint256 _expiryTime) external override onlyOwner nonReentrant { 25: (LongShortToken _longToken, LongShortToken _shortToken) = _createPairTokens(_tokenNameSuffix, _tokenSymbolSuffix, longTokenSalt, shortTokenSalt); 28: PrePOMarket _newMarket = new PrePOMarket{salt: _salt}(_governance, _collateral, ILongShortToken(address(_longToken)), ILongShortToken(address(_shortToken)), _floorLongPrice, _ceilingLongPrice, _floorValuation, _ceilingValuation, _expiryTime); 41: function _createPairTokens(string memory _tokenNameSuffix, string memory _tokenSymbolSuffix, bytes32 _longTokenSalt, bytes32 _shortTokenSalt) internal returns (LongShortToken _newLongToken, LongShortToken _newShortToken) {
/apps/smart-contracts/core/contracts/RedeemHook.sol Links: 17, 26, 28.
17: function hook(address sender, uint256 amountBeforeFee, uint256 amountAfterFee) external virtual override onlyAllowedMsgSenders { 26: function setAllowedMsgSenders(IAccountList allowedMsgSenders) public virtual override onlyOwner { super.setAllowedMsgSenders(allowedMsgSenders); } 28: function setAccountList(IAccountList accountList) public virtual override onlyOwner { super.setAccountList(accountList); }
/apps/smart-contracts/core/contracts/TokenSender.sol Links: 28, 60.
28: bytes32 public constant SET_SCALED_PRICE_LOWER_BOUND_ROLE = keccak256("TokenSender_setScaledPriceLowerBound(uint256)"); 60: function setAllowedMsgSenders(IAccountList allowedMsgSenders) public override onlyRole(SET_ALLOWED_MSG_SENDERS_ROLE) {
/apps/smart-contracts/core/contracts/WithdrawHook.sol Links: 27, 28, 63, 70, 91, 96, 106, 111.
27: bytes32 public constant SET_GLOBAL_WITHDRAW_LIMIT_PER_PERIOD_ROLE = keccak256("WithdrawHook_setGlobalWithdrawLimitPerPeriod(uint256)"); 28: bytes32 public constant SET_USER_WITHDRAW_LIMIT_PER_PERIOD_ROLE = keccak256("WithdrawHook_setUserWithdrawLimitPerPeriod(uint256)"); 63: require(globalAmountWithdrawnThisPeriod + _amountBeforeFee <= globalWithdrawLimitPerPeriod, "global withdraw limit exceeded"); 70: require(userToAmountWithdrawnThisPeriod[_sender] + _amountBeforeFee <= userWithdrawLimitPerPeriod, "user withdraw limit exceeded"); 91: function setWithdrawalsAllowed(bool _newWithdrawalsAllowed) external override onlyRole(SET_WITHDRAWALS_ALLOWED_ROLE) { 96: function setGlobalPeriodLength(uint256 _newGlobalPeriodLength) external override onlyRole(SET_GLOBAL_PERIOD_LENGTH_ROLE) { 106: function setGlobalWithdrawLimitPerPeriod(uint256 _newGlobalWithdrawLimitPerPeriod) external override onlyRole(SET_GLOBAL_WITHDRAW_LIMIT_PER_PERIOD_ROLE) { 111: function setUserWithdrawLimitPerPeriod(uint256 _newUserWithdrawLimitPerPeriod) external override onlyRole(SET_USER_WITHDRAW_LIMIT_PER_PERIOD_ROLE) {
/apps/smart-contracts/core/contracts/interfaces/IPrePOMarket.sol Links: 27.
27: event MarketCreated(address longToken, address shortToken, uint256 floorLongPayout, uint256 ceilingLongPayout, uint256 floorValuation, uint256 ceilingValuation, uint256 expiryTime);
Although tagless NatSpec comments are assumed to be @notice tagged it is best practice to explicitly write tags for empty comments.
/apps/smart-contracts/core/contracts/PrePOMarket.sol Links: 33-41.
33: /** 34: * Assumes `_collateral`, `_longToken`, and `_shortToken` are ... 39: * transferred to this contract via `createMarket()` in 40: * `PrePOMarketFactory.sol`.
apps/smart-contracts/core/contracts/DepositHook.sol Links: 36, 40.
36: * Records the deposit within `depositRecord`, and sends the fee to the 40: * Uses `_amountAfterFee` for updating global net deposits since the fee is
/apps/smart-contracts/core/contracts/WithdrawHook.sol Links: 45, 49.
45: * Records the deposit within `depositRecord`, and sends the fee to the 49: * Uses `_amountAfterFee` for updating global net deposits since the fee is
/packages/prepo-shared-contracts/contracts/interfaces/INFTScoreRequirement.sol Links: 40.
40: * This function is meant to be overriden and does not include any
/apps/smart-contracts/core/contracts/interfaces/ICollateral.sol Links: 76, 79, 82, 84, 97, 100, 111.
76: * An optional external hook `depositHook`, is called to provide expanded 79: * Fees are not directly captured, but approved to the `depositHook` for 82: * Assumes Base Token approval has already been given by `msg.sender`. 84: * Does not allow deposit amounts small enough to result in 97: * Fees are not directly captured, but approved to the `withdrawHook` for 100: * Does not allow withdraw amounts small enough to result in 111: * Only callable by `manager`
/apps/smart-contracts/core/contracts/interfaces/ICollateralHook.sol Links: 21, 24, 27.
21: * `amountBeforeFee` is the Base Token amount deposited/withdrawn by the 24: * `amountAfterFee` is the BaseToken amount deposited/withdrawn by the 27: * Only callable by `collateral`.
/apps/smart-contracts/core/contracts/interfaces/IDepositRecord.sol Links: 35, 45.
35: * Only callable by allowed hooks. 45: * Only callable by allowed hooks.
/apps/smart-contracts/core/contracts/interfaces/IDepositTradeHelper.sol Links: 46, 51, 53.
46: * Approvals to both take BaseToken from the user and the Collateral 51: * The LongShortToken to be purchased must be specified within 53: * The pool to swap with will be automatically routed to using Uniswap's
/apps/smart-contracts/core/contracts/interfaces/ILongShortToken.sol Links: 9.
9: * The token can represent either a Long or Short position for the
/apps/smart-contracts/core/contracts/interfaces/IManagerWithdrawHook.sol Links: 22.
22: * Must be a 4 decimal place percentage value e.g. 4.9999% = 49999.
/apps/smart-contracts/core/contracts/interfaces/IMarketHook.sol Links: 13, 16, 20.
13: * `amountBeforeFee` is the Collateral amount used to mint a market position 16: * `amountBeforeFee` is the Collateral amount used to mint a market position 20: * Only callable by allowed `PrePOMarket` contracts.
/apps/smart-contracts/core/contracts/interfaces/IPrePOMarket.sol Links: 73, 87, 90, 116.
73: * Minting will only be done by the team, and thus relies on the `_mintHook` 87: * After the market has ended, users can redeem any amount of 90: * A fee will be taken based on the `redemptionFee` factor. 116: * Only callable by `owner()`.
/apps/smart-contracts/core/contracts/interfaces/IPrePOMarketFactory.sol Links: 27, 30, 33, 36.
27: * Token names are generated from `tokenNameSuffix` as the name 30: * "LONG "/"SHORT " are appended to respective names, "L_"/"S_" are 33: * e.g. preSTRIPE 100-200 30-September 2021 => 36: * e.g. preSTRIPE_100-200_30SEP21 => L_preSTRIPE_100-200_30SEP21.
/apps/smart-contracts/core/contracts/interfaces/IWithdrawHook.sol Links: 57, 71, 84, 96.
57: * If the global period changes while an existing period is ongoing, the 71: * If the user period changes while an existing period is ongoing, the 84: * If the global withdraw limit changes, the global total will be 96: * If the user withdraw limit changes, account totals will be assessed based
It is best practice to have 3 indexed fields in events. Indexed fields help off-chain tools analyze on-chain activity through filtering these indexed fields.
/packages/prepo-shared-contracts/contracts/interfaces/IAccountListCaller.sol Links: 15.
15: event AccountListChange(IAccountList accountList);
/packages/prepo-shared-contracts/contracts/interfaces/IAllowedMsgSenders.sol Links: 19.
19: event AllowedMsgSendersChange(IAccountList allowedMsgSenders);
/packages/prepo-shared-contracts/contracts/interfaces/INFTScoreRequirement.sol Links: 17.
17: event RequiredScoreChange(uint256 score);
/packages/prepo-shared-contracts/contracts/interfaces/ITokenSender.sol Links: 17, 23, 29.
17: event PriceChange(IUintValue price); 23: event PriceMultiplierChange(uint256 priceMultiplier); 29: event ScaledPriceLowerBoundChange(uint256 scaledPrice);
/packages/prepo-shared-contracts/contracts/interfaces/ITokenSenderCaller.sol Links: 17, 23.
17: event TreasuryChange(address treasury); 23: event TokenSenderChange(address tokenSender);
/apps/smart-contracts/core/contracts/interfaces/ICollateral.sol Links: 38, 44, 50, 56, 62, 68.
38: event ManagerChange(address manager); 44: event DepositFeeChange(uint256 fee); 50: event WithdrawFeeChange(uint256 fee); 56: event DepositHookChange(address hook); 62: event WithdrawHookChange(address hook); 68: event ManagerWithdrawHookChange(address hook);
/apps/smart-contracts/core/contracts/interfaces/ICollateralHook.sol Links: 15.
15: event CollateralChange(address collateral);
/apps/smart-contracts/core/contracts/interfaces/IDepositHook.sol Links: 15.
15: event DepositsAllowedChange(bool allowed);
/apps/smart-contracts/core/contracts/interfaces/IDepositRecord.sol Links: 15, 21, 28.
15: event GlobalNetDepositCapChange(uint256 cap); 21: event UserDepositCapChange(uint256 cap); 28: event AllowedHooksChange(address hook, bool allowed);
/apps/smart-contracts/core/contracts/interfaces/IDepositRecordHook.sol Links: 16.
16: event DepositRecordChange(address depositRecord);
/apps/smart-contracts/core/contracts/interfaces/IManagerWithdrawHook.sol Links: 16.
16: event MinReservePercentageChange(uint256 percentage);
/apps/smart-contracts/core/contracts/interfaces/IPrePOMarket.sol Links: 27, 48, 54, 60, 66.
27: event MarketCreated(address longToken, address shortToken, uint256 floorLongPayout, uint256 ceilingLongPayout, uint256 floorValuation, uint256 ceilingValuation, uint256 expiryTime); 48: event MintHookChange(address hook); 54: event RedeemHookChange(address hook); 60: event FinalLongPayoutSet(uint256 payout); 66: event RedemptionFeeChange(uint256 fee);
/apps/smart-contracts/core/contracts/interfaces/IPrePOMarketFactory.sol Links: 14, 19.
14: event CollateralValidityChanged(address collateral, bool allowed); 19: event MarketAdded(address market, bytes32 longShortHash);
/apps/smart-contracts/core/contracts/interfaces/IWithdrawHook.sol Links: 17, 23, 29, 35, 41.
17: event WithdrawalsAllowedChange(bool allowed); 23: event GlobalPeriodLengthChange(uint256 period); 29: event UserPeriodLengthChange(uint256 period); 35: event GlobalWithdrawLimitPerPeriodChange(uint256 limit); 41: event UserWithdrawLimitPerPeriodChange(uint256 limit);
The Solidity Style Guide suggests the following function ordering: constructor, receive function (if exists), fallback function (if exists), external, public, internal, private.
The following contracts are not compliant (examples are only to prove the functions are out of order NOT a full description):
AccountListCaller.sol: external functions are positioned after public functions. AllowedMsgSenders.sol: external functions are positioned after public functions. TokenSenderCaller.sol: external functions are positioned after public functions. Collateral.sol: external functions are positioned after public functions. DepositHook.sol: external functions are positioned after public functions. PrePOMarketFactory.sol: external functions are positioned after public functions. TokenSender.sol: external functions are positioned after public functions. WithdrawHook.sol: external functions are positioned after public functions.
The Solidity Style Guide recommends to "[a]void extraneous whitespace [i]mmediately inside parenthesis, brackets or braces, with the exception of single line function declarations". There exists for loop pre-bracket trailing spaces in the codebase.
/packages/prepo-shared-contracts/contracts/NFTScoreRequirement.sol Links: 25, 37, 58.
25: for (uint256 i = 0; i < numCollections; ) { 37: for (uint256 i = 0; i < numCollections; ) { 58: for (uint256 i = 0; i < numCollections; ) {
10e3 Not In Scientific NotationPower of ten literals > 10e3 are easier to read when expressed in scientific notation. Consider expressing large powers of ten in scientific notation (Ex. 10e5).
/apps/smart-contracts/core/contracts/Collateral.sol Links: 19, 20.
19: uint256 public constant FEE_DENOMINATOR = 1000000; 20: uint256 public constant FEE_LIMIT = 100000;
/apps/smart-contracts/core/contracts/DepositTradeHelper.sol Links: 12.
12: uint24 public constant override POOL_FEE_TIER = 10000;
/apps/smart-contracts/core/contracts/ManagerWithdrawHook.sol Links: 12.
12: uint256 public constant PERCENT_DENOMINATOR = 1000000;
/apps/smart-contracts/core/contracts/PrePOMarket.sol Links: 30, 31.
30: uint256 private constant FEE_DENOMINATOR = 1000000; 31: uint256 private constant FEE_LIMIT = 100000;
overriden TypoThe word overridden is misspelled as overriden.
/packages/prepo-shared-contracts/contracts/interfaces/IAccountListCaller.sol Links: 19.
19: * @dev This function is meant to be overriden and does not include any
/packages/prepo-shared-contracts/contracts/interfaces/INFTScoreRequirement.sol Links: 28, 40, 49.
28: * @dev This function is meant to be overriden and does not include any 40: * This function is meant to be overriden and does not include any 49: * @dev This function is meant to be overriden and does not include any
/packages/prepo-shared-contracts/contracts/interfaces/ITokenSenderCaller.sol Links: 27.
27: * @dev This function is meant to be overriden and does not include any
The Solidity Style Guide states: [t]he braces denoting the body of a contract, library, functions and structs should ... close on their own line at the same indentation level as the beginning of the declaration. There are a few places in the codebase that add braces for single line if/else statements. There are places in the codebase that implement single line if statements without braces. Consider sticking to a single style (prefferably the Solidity Style Guide).
/apps/smart-contracts/core/contracts/Collateral.sol Links: 47-48, 67-68.
47: if (depositFee > 0) { require(_fee > 0, "fee = 0"); } 48: else { require(_amount > 0, "amount = 0"); }
67: if (withdrawFee > 0) { require(_fee > 0, "fee = 0"); } 68: else { require(_baseTokenAmount > 0, "amount = 0"); }
/apps/smart-contracts/core/contracts/PrePOMarket.sol Links: 91-92.
91: if (redemptionFee > 0) { require(_expectedFee > 0, "fee = 0"); } 92: else { require(_collateralAmount > 0, "amount = 0"); }
TODO Left In Production CodeTODOs should not be in production code. Each TODO should either be discarded or implemented if needed prior to production.
/apps/smart-contracts/core/contracts/interfaces/IDepositRecord.sol Links: 4.
4: // TODO interface copy needs some further edits to reflect new implementation
/apps/smart-contracts/core/contracts/TokenSender.sol Links: 15.
15: WithdrawERC20, // TODO: Access control when WithdrawERC20 updated
#0 - c4-judge
2022-12-19T14:05:06Z
Picodes marked the issue as grade-b