Back to 7ashraf's contests

Olas - 7ashraf's results

Olas is a unified network for off-chain services like automation, oracles, co-owned AI. It offers a stack for building services and a protocol for incentivizing their creation and their operation in a co-owned and decentralized way.

General Information

Platform: Code4rena

Start Date: 21/12/2023

Pot Size: $90,500 USDC

Total HM: 10

Participants: 39

Period: 18 days

Judge: LSDan

Total Solo HM: 5

Id: 315

League: ETH

Olas

Findings Distribution

Researcher Performance

Rank: 22/39

Findings: 1

Award: $271.14

QA:
grade-a

🌟 Selected for report: 0

🚀 Solo Findings: 0

External Links

Code4rena Contest PageGithub Contest RepositoryGithub Findings RepositoryOlas

Findings Information

🌟 Selected for report: IllIllI

Also found by: 0x11singh99, 0xA5DF, 0xMilenov, 0xTheC0der, 7ashraf, Bauchibred, EV_om, Kaysoft, Sathish9098, SpicyMeatball, cheatc0d3, erebus, hash, imare, immeas, joaovwfreire, lil_eth, lsaudit, oakcobalt, para8956, peanuts, rvierdiiev, slvDev, trachev

Awards

271.1429 USDC - $271.14

Labels

bug
grade-a
QA (Quality Assurance)
sufficient quality report
Q-03

External Links

Link to GitHub issue

Quality Assurance Report

##Summary The code review reveals key issues in the provided smart contract repository. These include the necessity to verify the existence of unitId before updating its hash and placing emits within if-statements to prevent false emissions. Other recommendations involve reverting on non-existent bonds, avoiding duplicate token names and symbols, and checking for zero addresses in constructors. The review suggests using modifiers for cleaner code, fixing comment typos, and streamlining redundant mathematical operations for efficiency. These insights offer a concise guide for enhancing the security and clarity of the smart contract implementation.

IssueTitleNumber of Instances
L-01Check existence of unitId in mapUnitIdHashes before updating hash5
L-02Move Depost emit inside if-statement to avoid false emits1
L-03Revert on non-existent bonds1
L-04Avoid duplicate token names and symbols in constructor2
L-05Funds owned by the contract cannot be sweeped or transferred1
L-06Inaccurate error message1
L-07Non-owner can burn tokens by transferring to address 01
L-08Assert to and amount greater than zero when minting1
L-09Add return values for mint and burn2
L-10Check if already un/paused before un/pausing2
N-01Utilize the use of modifiers-
N-02Fix typo in comments1
N-03Consider adding remaining time in revert message1
N-04Reduce redundant code1
N-05Inaccurate variable naming2
N-06Function create should emit an event1
N-07Boolean return value has no use1
N-08Utilize the use of the already defined error ZeroAddress2
N-09Utilize the use of Non-reentrant modifier for cleaner code1
N-10Check if new implementation address does not equal current address1
N-11Emit an event for increasing unlock time2

These findings provide actionable insights for enhancing the overall quality and robustness of the smart contract codebase.

[L-01] Check if unitId exists inside the mapUnitIdHashes[unitId] before updating its hash

Instances

        mapUnitIdHashes[unitId].push(unitHash);

        Unit memory unit = mapUnits[unitId];
        unitHashes = mapUnitIdHashes[unitId];
        subComponentIds = mapSubComponents[uint256(unitId)];
function updateHash(IRegistry.UnitType unitType, uint256 unitId, bytes32 unitHash) external returns (bool success) {
        if (unitType == IRegistry.UnitType.Component) {
            success = IRegistry(componentRegistry).updateHash(msg.sender, unitId, unitHash);
        } else {
            success = IRegistry(agentRegistry).updateHash(msg.sender, unitId, unitHash);
        }
    }

[L-02] Move Depost emit inside if-statment to avoid false emits

Instances

if (amount > 0) {
            // OLAS is a solmate-based ERC20 token with optimized transferFrom() that either returns true or reverts
            IERC20(token).transferFrom(msg.sender, address(this), amount);
+           emit Deposit(account, amount, lockedBalance.endTime, depositType, block.timestamp);
+           emit Supply(supplyBefore, supplyAfter);
        }

-        emit Deposit(account, amount, lockedBalance.endTime, depositType, block.timestamp);
-        emit Supply(supplyBefore, supplyAfter);

[L-03] should revert with an error on non-existent bonds

Instances

480    function getBondStatus(uint256 bondId) external view returns (uint256 payout, bool matured) {
481        payout = mapUserBonds[bondId].payout;
482        // If payout is zero, the bond has been redeemed or never existed
483        if (payout > 0) {
484            matured = block.timestamp >= mapUserBonds[bondId].maturity;
485        }
486    }

[L-04] Dont allow duplicate token names and symbols inside constructor

Instances

[L-05] Funds owned by the contract cannot be sweeped or transferred

The scenario happens if a user decides to create lock funds using the contract address, at the end no one will be able to withdraw the funds, and they will be locked. Consider adding a sweep tokens function to the contract

Instances

[L-06] Inaccurate error message

  • Error message is product closed, which will be emitted for never existing prodcuts. this gives in accurate message about the product

Instances

        if (supply == 0) {
            revert ProductClosed(productId);
        }

Mitigation

  • Check for prodcuct == 0 for prodcut does not exist

[L-07] Non owner can burn tokens by transferring to address 0

Instances

Mitigation

  • Override the transfer method to revert

[L-08] Assert to and amount greater than zero when minting

Instances

        IERC20(rootToken).mint(to, amount);

[L-09] Add return values for mint and burn

Instances

 /// @dev Mints tokens.
    /// @param account Account address.
    /// @param amount Token amount.
    function mint(address account, uint256 amount) external;

    /// @dev Burns tokens.
    /// @param amount Token amount to burn.
    function burn(uint256 amount) external;

[L-10] Check if already un/paused before un/pausing

Check the state of contract if already pasued or not before pausing or not pausing

Instance

    /// @dev Pauses the contract.

 function pause() external virtual {
        // Check for the ownership
        if (msg.sender != owner) {
            revert OwnerOnly(msg.sender, owner);
        }

        paused = true;
        emit Pause(msg.sender);
    }

    /// @dev Unpauses the contract.
    function unpause() external virtual {
        // Check for the ownership
        if (msg.sender != owner) {
            revert OwnerOnly(msg.sender, owner);
        }

        paused = false;
        emit Unpause(msg.sender);
    }

[N-01] Utilize the use of modifiers

Protocol can achieve cleaner code by following separation of concerns and encapsulation priniciple instead of applying the same checks on msg.sneder each methdod, we can use a modifier like onlyOwner or onlyManager and appply the needed checks inside these modifiers.

[N-02] Fix typo in comments

Instances

- reminder
+ remainder

[N-03] Consider adding remaining time in revert message

Instances

[N-04] Reduce redundunt code

the following mathematical operations code be done in one operation

Instances

 uint256 supplyBefore = supply;
        uint256 supplyAfter;
        // The amount cannot be less than the total supply
        unchecked {
            supplyAfter = supplyBefore - amount;
            supply = supplyAfter;
        }

to

unchecked{
    supply = supply - amount;
}

...
        emit Supply(supply + amount, supply - amount);

[N-05] InAccurate variable naming

Instances

 /// @dev Token is non-transferable.
    /// @param account Token address.
    error NonTransferable(address account);

/// @dev Token is non-delegatable.
    /// @param account Token address.
    error NonDelegatable(address account);

[N-06] Function create should emit an event

Instances

[N-07] The boolean return value has no use

Description

The boolean return value success indicating the function successful behaviour has no use and can be neglected as the function reverts on failure, and there is no cas where the function does not revert and success is set to false.

Instances

function updateHash(address unitOwner, uint256 unitId, bytes32 unitHash) external virtual
        returns (bool success)
    {
        ...
        success = true;

        emit UpdateUnitHash(unitId, unitType, unitHash);
    }

[N-08]Utilize the use of the already defined error ZeroAddress()

The contract defines an error which is called ZeroAddress() in the following lines

IErrorsTokenomics.sol #17    error ZeroAddress();

but when comes to checking for zero address, it uses exipicit checking for zero addresses

Instances

Mitigation

- if (_bondCalculator != address(0)) {
-            bondCalculator = _bondCalculator;
-            emit BondCalculatorUpdated(_bondCalculator);
-        }

+ if (_bondCalculator == address(0)) {
+            revert ZeroAddress();
+        }
+        emit BondCalculatorUpdated(_bondCalculator);

[N-09]Utilize the use of Non-reentrant modifire for a cleaner code

Instances

[N-010]Check if new implementation address does not equal current address

Instances

[N-11]Consider emiting an event for this function

On increasing unlock time, function should emit an event with the parameters including account, previous lock time, and new lock time

Instances

#0 - c4-pre-sort

2024-01-10T14:41:28Z

alex-ppg marked the issue as insufficient quality report

#1 - c4-pre-sort

2024-01-10T14:41:47Z

alex-ppg marked the issue as sufficient quality report

#2 - c4-judge

2024-01-20T14:47:46Z

dmvt marked the issue as grade-b

#3 - c4-judge

2024-01-20T18:37:10Z

dmvt marked the issue as grade-a

AuditHub

A portfolio for auditors, a security profile for protocols, a hub for web3 security.

Built bymalatrax © 2024

Auditors

Browse

Contests

Browse

Get in touch

ContactTwitter