Back to 0xmatt's contests

Golom contest - 0xmatt's results

An NFT marketplace that offers the lowest industry fee, a publicly available order-book along with analytical tools.

General Information

Platform: Code4rena

Start Date: 26/07/2022

Pot Size: $75,000 USDC

Total HM: 29

Participants: 179

Period: 6 days

Judge: LSDan

Total Solo HM: 6

Id: 148

League: ETH

Golom

Findings Distribution

Researcher Performance

Rank: 114/179

Findings: 2

Award: $56.49

🌟 Selected for report: 0

🚀 Solo Findings: 0

External Links

Code4rena Contest PageGithub Contest RepositoryGithub Findings RepositoryGolom

Findings Information

🌟 Selected for report: IllIllI

Also found by: 0x1f8b, 0x4non, 0x52, 0xA5DF, 0xDjango, 0xLovesleep, 0xNazgul, 0xNineDec, 0xSmartContract, 0xackermann, 0xc0ffEE, 0xf15ers, 0xmatt, 0xsanson, 0xsolstars, 8olidity, AuditsAreUS, Bahurum, Bnke0x0, CRYP70, CertoraInc, Ch_301, Chom, CryptoMartian, Deivitto, DevABDee, Dravee, ElKu, Franfran, Funen, GalloDaSballo, GimelSec, GiveMeTestEther, Green, JC, Jmaxmanblue, JohnSmith, Jujic, Junnon, Kenshin, Krow10, Kumpa, Lambda, MEP, Maxime, MiloTruck, Mohandes, NoamYakov, Picodes, RedOneN, Rohan16, Rolezn, Ruhum, RustyRabbit, Sm4rty, Soosh, StErMi, StyxRave, Tadashi, TomJ, Treasure-Seeker, TrungOre, Waze, _Adam, __141345__, ajtra, ak1, apostle0x01, arcoun, asutorufos, async, benbaessler, berndartmueller, bin2chen, brgltd, c3phas, cRat1st0s, carlitox477, chatch, codetilda, codexploder, cryptonue, cryptphi, csanuragjain, cthulhu_cult, delfin454000, dipp, dirk_y, djxploit, ellahi, exd0tpy, fatherOfBlocks, giovannidisiena, hansfriese, horsefacts, hyh, idkwhatimdoing, indijanc, jayfromthe13th, jayphbee, joestakey, kenzo, kyteg, lucacez, luckypanda, mics, minhquanym, obront, oyc_109, pedr02b2, rajatbeladiya, rbserver, reassor, robee, rokinot, rotcivegaf, sach1r0, saian, saneryee, sashik_eth, scaraven, shenwilly, simon135, sseefried, supernova, teddav, ych18, zuhaibmohd, zzzitron

Awards

35.1687 USDC - $35.17

Labels

bug
QA (Quality Assurance)
old-submission-method

External Links

Link to GitHub issue

CodeArena QA Report

Vulnerability detail - Duplicate Code

Impact

The validateOrder() function in GolomTrader.sol checks twice that the recovered signature signer is o.signer.

Details/Proof-Of-Concept

The following code is encountered from L177 of GolomTrader.sol:

require(signaturesigner == o.signer, 'invalid signature');
if (signaturesigner != o.signer) {
    return (0, hashStruct, 0);
}

The require() statement ensures that the following condition is never met. If signaturesigner and o.signer don't match the transaction will revert with an 'invalid signature' error instead of returning a status code of 0.

Suggested Mitigation Steps

Remove the if statement from L178-L180.

Tools Used

Saw it reading in VSCode

#0 - kartoonjoy

2022-08-01T17:12:17Z

Edited the word Gas report to QA report in the wardens title. Warden 0xMatt is aware. Thanks

Findings Information

🌟 Selected for report: JohnSmith

Also found by: 0x1f8b, 0xA5DF, 0xDjango, 0xKitsune, 0xLovesleep, 0xNazgul, 0xSmartContract, 0xmatt, 0xsam, Aymen0909, Bnke0x0, CRYP70, Chandr, Chinmay, CodingNameKiki, Deivitto, Dravee, ElKu, Fitraldys, Funen, GalloDaSballo, Green, IllIllI, JC, Jmaxmanblue, Junnon, Kaiziron, Kenshin, Krow10, Maxime, Migue, MiloTruck, Noah3o6, NoamYakov, Randyyy, RedOneN, ReyAdmirado, Rohan16, Rolezn, Ruhum, Sm4rty, StyxRave, TomJ, Tomio, _Adam, __141345__, ajtra, ak1, apostle0x01, asutorufos, async, benbaessler, brgltd, c3phas, cRat1st0s, carlitox477, delfin454000, djxploit, durianSausage, ellahi, erictee, fatherOfBlocks, gerdusx, gogo, hyh, jayfromthe13th, jayphbee, joestakey, kaden, kenzo, kyteg, ladboy233, lucacez, m_Rassska, mics, minhquanym, oyc_109, pfapostol, rbserver, reassor, rfa, robee, rokinot, sach1r0, saian, samruna, sashik_eth, simon135, supernova, tofunmi, zuhaibmohd

Awards

21.3211 USDC - $21.32

Labels

bug
G (Gas Optimization)
old-submission-method

External Links

Link to GitHub issue

CodeArena Gas Optimization Report

Vulnerability detail - Unnecessary Zero Variable Assignment At Initialization

Impact

Uninitialized variables are assigned zero values by default (with the exception of Strings). Assigning a zero value to a variable costs gas. Gas can saved by eliminating unnecessary zero-assignments.

Details/Proof-Of-Concept

In the function _checkPoint() in vote-escrow/VoteEscrowCore.sol the old_dslope and new_dslope int128 values are declared and initialized with a value of 0. As the default value for int128 is 0 there's no benefit in assigning values of 0 to these variables at initialization.

The zero-assignment can also be removed from loops starting at zero. Different compiler configurations will have different impacts on gas savings.

Suggested Mitigation Steps

Remove the '= 0' assignment. As an example change the assignment at lines 697 and 698 of VoteEscoreCore.sol:

    int128 old_dslope = 0;
    int128 new_dslope = 0;

To:

    int128 old_dslope;
    int128 new_dslope;

Instances Found

In contracts/vote-escrow/vote-escrow/VoteEscrowDelegation.sol:

Static assignments:

  1. L50
  2. L147
  3. L170
  4. L188

Loops:

  1. L171
  2. L189

In contracts/rewards/rewards/RewardDistributor.sol:

Static assignments:

  1. L45
  2. L142
  3. L156
  4. L175
  5. L176
  6. L222
  7. L223
  8. L257
  9. L272

Loops:

  1. L143
  2. L157
  3. L180
  4. L183
  5. L226
  6. L258
  7. L273

In contracts/vote-escrow/vote-escrow/VoteEscrowCore.sol:

Static assignments:

  1. L697
  2. L698
  3. L735
  4. L749
  5. L1042
  6. L1113
  7. L1133
  8. L1134
  9. L1169
  10. L1211

Loops:

  1. L745
  2. L1044
  3. L1115
  4. L1167

In contracts/core/GolomTrader.sol:

Loops:

  1. L415

Tools Used:

Grep.

AuditHub

A portfolio for auditors, a security profile for protocols, a hub for web3 security.

Built bymalatrax © 2024

Auditors

Browse

Contests

Browse

Get in touch

ContactTwitter