Platform: Code4rena
Start Date: 11/11/2022
Pot Size: $90,500 USDC
Total HM: 52
Participants: 92
Period: 7 days
Judge: LSDan
Total Solo HM: 20
Id: 182
League: ETH
Rank: 39/92
Findings: 4
Award: $215.01
π Selected for report: 0
π Solo Findings: 0
88.5851 USDC - $88.59
In the previewAccumulatedETH function from the GiantMevAndFeesPool contract, the function is supposed to calculate the total ETH accumulated by an address for a given staking vaults array, but when calculating the value of accumulated only ETH accumulated in the last vault of the array will be accounted for as the accumulated value is replaced in each iteration instead of being summed with previous value, this will result in a wrong value for the calculated 'total accumulated ETH" as it contains only the ETH accumulated from the last vault instead of the total ETH accumulated in all the vaults.
The impact of this is a potential loss of funds for the user or the protocol because the accumulated value is later used when calling _previewAccumulatedETH so the function will return the wrong ETH accumulated by the user.
The issue occurs in the previewAccumulatedETH function below :
File: contracts/liquid-staking/GiantMevAndFeesPool.sol Line 82-98
function previewAccumulatedETH( address _user, address[] calldata _stakingFundsVaults, LPToken[][] calldata _lpTokens ) external view returns (uint256) { require(_stakingFundsVaults.length == _lpTokens.length, "Inconsistent array lengths"); uint256 accumulated; for (uint256 i; i < _stakingFundsVaults.length; ++i) { /* @audit it should be : accumulated += instead of : accumulated = */ accumulated = StakingFundsVault(payable(_stakingFundsVaults[i])).batchPreviewAccumulatedETH( address(this), _lpTokens[i] ); } return _previewAccumulatedETH(_user, address(lpTokenETH), lpTokenETH.balanceOf(_user), lpTokenETH.totalSupply(), accumulated); }
As you can see in the code above, the for loop is used to go through all the staking vaults in the _stakingFundsVaults array, and it is supposed to add at each iteration the value accumulated by the vault to the accumulated variable but the accumulated variable is replaced at each iteration with the new value which in the end will give accumulated variable the value of the ETH accumulated in the last staking vault only instead of being equal to the sum of ETH accumulated in all vaults.
And because the accumulated value is later used when calling _previewAccumulatedETH, the function will return the wrong ETH accumulated by the user which may lead to the loss of user (or protocol) funds.
Manual review
To fix this issue the previewAccumulatedETH function should be modified as follow :
function previewAccumulatedETH( address _user, address[] calldata _stakingFundsVaults, LPToken[][] calldata _lpTokens ) external view returns (uint256) { require(_stakingFundsVaults.length == _lpTokens.length, "Inconsistent array lengths"); uint256 accumulated; for (uint256 i; i < _stakingFundsVaults.length; ++i) { /* @audit calculate the total sum with : += */ accumulated += StakingFundsVault(payable(_stakingFundsVaults[i])).batchPreviewAccumulatedETH( address(this), _lpTokens[i] ); } return _previewAccumulatedETH(_user, address(lpTokenETH), lpTokenETH.balanceOf(_user), lpTokenETH.totalSupply(), accumulated); }
#0 - c4-judge
2022-11-21T22:07:18Z
dmvt marked the issue as duplicate of #160
#1 - c4-judge
2022-11-30T14:18:34Z
dmvt marked the issue as satisfactory
6.2548 USDC - $6.25
In the updateNodeRunnerWhitelistStatus function from the LiquidStakingManager contract, there is a check statement to verify that the new status isWhitelisted is different from the old one but this check is wrong as it verify that the old value is not equal to itself which is impossible, so the updateNodeRunnerWhitelistStatus function will always revert and thus the whitelist status of node runner can not be changed.
The issue occurs in the updateNodeRunnerWhitelistStatus function below :
File: contracts/liquid-staking/LiquidStakingManager.sol Line 278-284
function updateNodeRunnerWhitelistStatus(address _nodeRunner, bool isWhitelisted) external onlyDAO { require(_nodeRunner != address(0), "Zero address"); /* @audit should check that isNodeRunnerWhitelisted[_nodeRunner] != isWhitelisted But instead checks : isNodeRunnerWhitelisted[_nodeRunner] != isNodeRunnerWhitelisted[_nodeRunner] */ require(isNodeRunnerWhitelisted[_nodeRunner] != isNodeRunnerWhitelisted[_nodeRunner], "Unnecessary update to same status"); isNodeRunnerWhitelisted[_nodeRunner] = isWhitelisted; emit NodeRunnerWhitelistingStatusChanged(_nodeRunner, isWhitelisted); }
As it is illustrated above the function is not checking that the new status isWhitelisted is different from the old one but instead is verifying the old value, and because it will have the same value the check will revert and the node runner status cannot be updated in the future.
Manual review
To fix this issue the require statement check should be corrected to verify the new value, the new updateNodeRunnerWhitelistStatus function should be :
function updateNodeRunnerWhitelistStatus(address _nodeRunner, bool isWhitelisted) external onlyDAO { require(_nodeRunner != address(0), "Zero address"); /* @audit use the correct check : isNodeRunnerWhitelisted[_nodeRunner] != isWhitelisted */ require(isNodeRunnerWhitelisted[_nodeRunner] != isWhitelisted, "Unnecessary update to same status"); isNodeRunnerWhitelisted[_nodeRunner] = isWhitelisted; emit NodeRunnerWhitelistingStatusChanged(_nodeRunner, isWhitelisted); }
#0 - c4-judge
2022-11-21T22:00:43Z
dmvt marked the issue as duplicate of #67
#1 - c4-judge
2022-11-30T11:43:34Z
dmvt marked the issue as satisfactory
#2 - C4-Staff
2022-12-21T00:11:17Z
JeeberC4 marked the issue as duplicate of #378
π Selected for report: 0xSmartContract
Also found by: 0x4non, 0xNazgul, 0xRoxas, 0xdeadbeef0x, 0xmuxyz, 9svR6w, Awesome, Aymen0909, B2, Bnke0x0, CloudX, Deivitto, Diana, Franfran, IllIllI, Josiah, RaymondFam, ReyAdmirado, Rolezn, Sathish9098, Secureverse, SmartSek, Trust, Udsen, a12jmx, aphak5010, brgltd, bulej93, c3phas, ch0bu, chaduke, chrisdior4, clems4ever, cryptostellar5, datapunk, delfin454000, fs0c, gogo, gz627, hl_, immeas, joestakey, lukris02, martin, nogo, oyc_109, pashov, pavankv, peanuts, pedr02b2, rbserver, rotcivegaf, sahar, sakman, shark, tnevler, trustindistrust, zaskoh, zgo
52.0338 USDC - $52.03
| Issue | Risk | Instances | |
|---|---|---|---|
| 1 | Front-runable initialize functions | Low | 5 |
| 2 | Related data should be grouped in a struct | NC | 9 |
| 3 | 2**<N> - 1 should be re-written as type(uint<N>).max | NC | 1 |
| 4 | constant should be defined rather than using magic numbers | NC | 10 |
initialize functions :The initialize function is used in many contracts to initialize important contract parameters, and in all of them there is the issue that any attacker can initialize the contract before the legitimate deployer and even if the developers when deploying call immediately the initialize function, malicious agents can trace the protocol deployment transactions and insert their own transaction between them and by doing so they front run the developers call and gain the ownership of the contract and set the wrong parameters.
The impact of this issue is :
In the best case developers notice the problem and have to redeploy the contract and thus costing more gas.
In the worst case the protocol continue to work with the wrong owner and state parameters which could lead to the loss of user funds.
Instances include:
File: contracts/liquid-staking/LiquidStakingManager.sol Line 169
function init( address _dao, address _syndicateFactory, address _smartWalletFactory, address _lpTokenFactory, address _brand, address _savETHVaultDeployer, address _stakingFundsVaultDeployer, address _optionalGatekeeperDeployer, uint256 _optionalCommission, bool _deployOptionalGatekeeper, string calldata _stakehouseTicker ) external virtual override initializer
File: contracts/liquid-staking/LPToken.sol Line 32
function init( address _deployer, address _transferHookProcessor, string calldata _tokenSymbol, string calldata _tokenName ) external override initializer
File: contracts/liquid-staking/SavETHVault.sol Line 45
function init(address _liquidStakingManagerAddress, LPTokenFactory _lpTokenFactory) external virtual initializer
File: contracts/liquid-staking/StakingFundsVault.sol Line 46
function init(address _liquidStakingNetworkManager, LPTokenFactory _lpTokenFactory) external virtual initializer
File: contracts/syndicate/Syndicate.sol Line 129-134
function initialize( address _contractOwner, uint256 _priorityStakingEndBlock, address[] memory _priorityStakers, bytes[] memory _blsPubKeysForSyndicateKnots ) external virtual override initializer
It's recommended to use the constructor to initialize non-proxied contracts.
For initializing proxy (upgradable) contracts deploy contracts using a factory contract that immediately calls initialize after deployment or make sure to call it immediately after deployment and verify that the transaction succeeded.
When there are mappings that use the same key value, having separate fields is error prone, for instance in case of deletion or with future new fields.
Instances include:
File: contracts/syndicate/Syndicate.sol 90 mapping(bytes => bool) public isKnotRegistered; 99 mapping(bytes => uint256) public sETHTotalStakeForKnot; 102 mapping(bytes => mapping(address => uint256)) public sETHStakedBalanceForKnot; 105 mapping(bytes => mapping(address => uint256)) public sETHUserClaimForKnot; 108 mapping(bytes => uint256) public totalETHProcessedPerCollateralizedKnot; 111 mapping(bytes => mapping(address => uint256)) public accruedEarningPerCollateralizedSlotOwnerOfKnot; 114 mapping(bytes => mapping(address => uint256)) public claimedPerCollateralizedSlotOwnerOfKnot; 117 mapping(bytes => bool) public isNoLongerPartOfSyndicate; 120 mapping(bytes => uint256) public lastAccumulatedETHPerFreeFloatingShare;
Those mappings should be refactored into the following struct and mapping for example :
struct Knot { /// @notice Informational - is the knot registered to this syndicate or not - the node should point to this contract bool isKnotRegistered; /// @notice Total amount of free floating sETH staked uint256 sETHTotalStakeForKnot; /// @notice Amount of sETH staked by user against a knot mapping(address => uint256) sETHStakedBalanceForKnot; /// @notice Amount of ETH claimed by user from sETH staking mapping(address => uint256) sETHUserClaimForKnot; /// @notice Total amount of ETH that has been allocated to the collateralized SLOT owners of a KNOT uint256 totalETHProcessedPerCollateralizedKnot; /// @notice Total amount of ETH accrued for the collateralized SLOT owner of a KNOT mapping(address => uint256) accruedEarningPerCollateralizedSlotOwnerOfKnot; /// @notice Total amount of ETH claimed by the collateralized SLOT owner of a KNOT mapping(address => uint256) claimedPerCollateralizedSlotOwnerOfKnot; /// @notice Whether a BLS public key, that has been previously registered, is no longer part of the syndicate and its shares (free floating or SLOT) cannot earn any more rewards bool isNoLongerPartOfSyndicate; /// @notice Once a BLS public key is no longer part of the syndicate, the accumulated ETH per free floating SLOT share is snapshotted so historical earnings can be drawn down correctly uint256 lastAccumulatedETHPerFreeFloatingShare; } mapping(address => Knot) public knotDetails;
2**<N> - 1 should be re-written as type(uint<N>).max :Instances include:
File: contracts/liquid-staking/LiquidStakingManager.sol
Replace the aforementioned statements for better readability.
constant should be defined rather than using magic numbers :It is best practice to use constant variables rather than hex/numeric literal values to make the code easier to understand and maintain, but if they are used those numbers should be well docummented.
Instances include:
File: contracts/liquid-staking/ETHPoolLPFactory.sol 82 require(_oldLPToken.lastInteractedTimestamp(msg.sender) + 30 minutes < block.timestamp, "Liquidity is still fresh"); 83 require(_amount + _newLPToken.totalSupply() <= 24 ether, "Not enough mintable tokens"); 88 require(blsPublicKeyOfPreviousKnot.length == 48, "Incorrect BLS public key"); 89 require(blsPublicKeyOfNewKnot.length == 48, "Incorrect BLS public key"); 117 require(_blsPublicKeyOfKnot.length == 48, "Invalid BLS public key"); File: contracts/liquid-staking/GiantPoolBase.sol 96 require(lpTokenETH.lastInteractedTimestamp(msg.sender) + 1 days < block.timestamp, "Too new"); File: contracts/liquid-staking/GiantMevAndFeesPool.sol 116 require(lpTokenETH.balanceOf(msg.sender) >= 0.5 ether, "No common interest"); File: contracts/liquid-staking/GiantSavETHVaultPool.sol 127 require(lpTokenETH.balanceOf(msg.sender) >= 0.5 ether, "No common interest"); File: contracts/liquid-staking/StakingFundsVault.sol 184 require(_lpToken.lastInteractedTimestamp(msg.sender) + 30 minutes < block.timestamp, "Too new"); 230 require(token.lastInteractedTimestamp(msg.sender) + 30 minutes < block.timestamp, "Last transfer too recent");
Replace the hex/numeric literals aforementioned with constants.
#0 - c4-judge
2022-12-02T21:46:46Z
dmvt marked the issue as grade-b
π Selected for report: IllIllI
Also found by: 0xSmartContract, Awesome, Aymen0909, CloudX, Deivitto, ReyAdmirado, Saintcode_, bharg4v, brgltd, btk, c3phas, chrisdior4, ignacio, imare, lukris02, skyle, tnevler
68.1383 USDC - $68.14
| Issue | Instances | |
|---|---|---|
| 1 | Mappings related to the same data should be combined into a single mapping with the help of struct | 9 |
| 2 | State variables only set in the constructor should be declared immutable | 3 |
| 3 | Double write to storage in the burnLPToken function | 1 |
| 4 | Redundant non-zero address check in burnLPTokensForETHByBLS function | 1 |
| 5 | Use unchecked {} for subtractions where the operands cannot underflow because of a previous require() | 2 |
| 6 | x += y/x -= y costs more gas than x = x + y/x = x - y for state variables | 24 |
| 7 | ++i/i++ should be unchecked{++i}/unchecked{i++} when it is not possible for them to overflow, as in the case when used in for & while loops | 36 |
| 8 | Don't compare boolean expressions to boolean literals | 16 |
| 9 | Use calldata instead of memory for function parameters type | 5 |
| 10 | Splitting require() statements that uses && saves gas | 1 |
| 11 | memory values should be emitted in events instead of storage ones | 1 |
Saves a storage slot for the mapping. Depending on the circumstances and sizes of types, can avoid a Gsset (20000 gas) per mapping combined. Reads and subsequent writes can also be cheaper when a function requires both values and they both fit in the same storage slot. Finally, if both fields are accessed in the same function, can save ~42 gas per access due to not having to recalculate the key's keccak256 hash (Gkeccak256 - 30 gas) and that calculation's associated stack operations.
There are 9 instances of this issue :
File: contracts/syndicate/Syndicate.sol 90 mapping(bytes => bool) public isKnotRegistered; 99 mapping(bytes => uint256) public sETHTotalStakeForKnot; 102 mapping(bytes => mapping(address => uint256)) public sETHStakedBalanceForKnot; 105 mapping(bytes => mapping(address => uint256)) public sETHUserClaimForKnot; 108 mapping(bytes => uint256) public totalETHProcessedPerCollateralizedKnot; 111 mapping(bytes => mapping(address => uint256)) public accruedEarningPerCollateralizedSlotOwnerOfKnot; 114 mapping(bytes => mapping(address => uint256)) public claimedPerCollateralizedSlotOwnerOfKnot; 117 mapping(bytes => bool) public isNoLongerPartOfSyndicate; 120 mapping(bytes => uint256) public lastAccumulatedETHPerFreeFloatingShare;
These mappings could be refactored into the following struct and mapping for example :
struct Knot { /// @notice Informational - is the knot registered to this syndicate or not - the node should point to this contract bool isKnotRegistered; /// @notice Total amount of free floating sETH staked uint256 sETHTotalStakeForKnot; /// @notice Amount of sETH staked by user against a knot mapping(address => uint256) sETHStakedBalanceForKnot; /// @notice Amount of ETH claimed by user from sETH staking mapping(address => uint256) sETHUserClaimForKnot; /// @notice Total amount of ETH that has been allocated to the collateralized SLOT owners of a KNOT uint256 totalETHProcessedPerCollateralizedKnot; /// @notice Total amount of ETH accrued for the collateralized SLOT owner of a KNOT mapping(address => uint256) accruedEarningPerCollateralizedSlotOwnerOfKnot; /// @notice Total amount of ETH claimed by the collateralized SLOT owner of a KNOT mapping(address => uint256) claimedPerCollateralizedSlotOwnerOfKnot; /// @notice Whether a BLS public key, that has been previously registered, is no longer part of the syndicate and its shares (free floating or SLOT) cannot earn any more rewards bool isNoLongerPartOfSyndicate; /// @notice Once a BLS public key is no longer part of the syndicate, the accumulated ETH per free floating SLOT share is snapshotted so historical earnings can be drawn down correctly uint256 lastAccumulatedETHPerFreeFloatingShare; } mapping(address => Knot) public knotDetails;
immutable :The state variables that rae only set in the constructor and there is no way to change their value later should be declared immutable, ths avoids a Gsset (20000 gas) in the constructor, and replaces each Gwarmacces (100 gas) with a PUSH32 (3 gas).
There are 3 instances of this issue:
File: contracts/liquid-staking/GiantLP.sol Line 11
address public pool;
File: contracts/liquid-staking/GiantLP.sol Line 14
ITransferHookProcessor public transferHookProcessor;
File: contracts/liquid-staking/OptionalHouseGatekeeper.sol Line 12
ILiquidStakingManager public liquidStakingManager;
burnLPToken function :In the burnLPToken function (in the SavETHVault contract) there is a doube write to storage for the dETHDetails variable as the function uses a storage pointer, the second save should be removed to save gas (~4k gas saved)
File: contracts/liquid-staking/SavETHVault.sol Line 168-170
// first save dETHDetails.withdrawn = true; dETHDetails.savETHBalance = savETHBalance; // second save dETHForKnot[blsPublicKeyOfKnot] = dETHDetails;
burnLPTokensForETHByBLS function :The zero address check inside the burnLPTokensForETHByBLS function is redundant as the burnLPForETH function also contains the same check, so it must be removed to save gas.
This check must be removed :
File: contracts/liquid-staking/StakingFundsVault.sol Line 154
require(address(token) != address(0), "No ETH staked for specified BLS key");
Because this check does the same verification later :
File: contracts/liquid-staking/StakingFundsVault.sol Line 177
require(address(_lpToken) != address(0), "Zero address specified");
unchecked {} for subtractions where the operands cannot underflow because of a previous require():Solidity version 0.8+ comes with implicit overflow and underflow checks on unsigned integers. When an overflow or an underflow isnβt possible (as an example, when a comparison is made before the arithmetic operation), some gas can be saved by using an unchecked block.
There are 2 instances of this issue:
File: contracts/liquid-staking/GiantPoolBase.sol Line 57
idleETH -= _amount;
The above operation cannot underflow due to the check require(idleETH >= _amount, "Come back later or withdraw less ETH"); and should be modified as follows :
unchecked {idleETH -= _amount;}
File: contracts/syndicate/Syndicate.sol Line 272-273
sETHTotalStakeForKnot[_blsPubKey] -= _sETHAmount; sETHStakedBalanceForKnot[_blsPubKey][msg.sender] -= _sETHAmount;
The above operations cannot underflow due to the check
if (sETHStakedBalanceForKnot[_blsPubKey][msg.sender] < _sETHAmount) revert NothingStaked();
and should be modified as follows :
unchecked { sETHTotalStakeForKnot[_blsPubKey] -= _sETHAmount; sETHStakedBalanceForKnot[_blsPubKey][msg.sender] -= _sETHAmount; }
x += y/x -= y costs more gas than x = x + y/x = x - y for state variables :Using the addition operator instead of plus-equals saves 113 gas as explained here
There are 24 instances of this issue:
File: contracts/liquid-staking/GiantPoolBase.sol 39 idleETH += msg.value; 57 idleETH -= _amount; File: contracts/liquid-staking/GiantMevAndFeesPool.sol 40 idleETH -= _ETHTransactionAmounts[i]; File: contracts/liquid-staking/GiantSavETHVaultPool.sol 46 idleETH -= transactionAmount; File: contracts/liquid-staking/LiquidStakingManager.sol 615 stakedKnotsOfSmartWallet[smartWallet] -= 1; 770 stakedKnotsOfSmartWallet[smartWallet] += 1; 782 numberOfKnots += 1; 839 numberOfKnots += 1; File: contracts/liquid-staking/SyndicateRewardsProcessor.sol 65 totalClaimed += due; 85 accumulatedETHPerLPShare += (unprocessed * PRECISION) / _numOfShares; File: contracts/syndicate/Syndicate.sol 185 accumulatedETHPerFreeFloatingShare += _calculateNewAccumulatedETHPerFreeFloatingShare(freeFloatingUnprocessed); 190 accumulatedETHPerCollateralizedSlotPerKnot += collateralizedUnprocessed; 225 totalFreeFloatingShares += _sETHAmount; 226 sETHTotalStakeForKnot[_blsPubKey] += _sETHAmount; 227 sETHStakedBalanceForKnot[_blsPubKey][_onBehalfOf] += _sETHAmount; 269 totalFreeFloatingShares -= _sETHAmount; 272 sETHTotalStakeForKnot[_blsPubKey] -= _sETHAmount; 273 sETHStakedBalanceForKnot[_blsPubKey][msg.sender] -= _sETHAmount; 317 totalClaimed += unclaimedUserShare; 511 accruedEarningPerCollateralizedSlotOwnerOfKnot[_blsPubKey][collateralizedOwnerAtIndex] += unprocessedETHForCurrentKnot; 558 numberOfRegisteredKnots += knotsToRegister; 621 totalFreeFloatingShares -= sETHTotalStakeForKnot[_blsPublicKey]; 624 numberOfRegisteredKnots -= 1; 658 totalClaimed += unclaimedUserShare;
There are 36 instances of this issue:
File: contracts/liquid-staking/GiantPoolBase.sol 76 for (uint256 i; i < amountOfTokens; ++i) File: contracts/liquid-staking/GiantMevAndFeesPool.sol 38 for (uint256 i; i < numOfVaults; ++i) 64 for (uint256 i; i < numOfVaults; ++i) 117 for (uint256 i; i < numOfRotations; ++i) 135 for (uint256 i; i < numOfVaults; ++i) 183 for (uint256 i; i < _lpTokens.length; ++i) File: contracts/liquid-staking/GiantSavETHVaultPool.sol 42 for (uint256 i; i < numOfSavETHVaults; ++i) 78 for (uint256 i; i < numOfVaults; ++i) 82 for (uint256 j; j < _lpTokens[i].length; ++j) 128 for (uint256 i; i < numOfRotations; ++i) 146 for (uint256 i; i < numOfVaults; ++i) 148 for (uint256 j; j < _lpTokens[i].length; ++j) File: contracts/liquid-staking/LiquidStakingManager.sol 392 for(uint256 i; i < _blsPubKeys.length; ++i) 465 for(uint256 i; i < len; ++i) 538 for (uint256 i; i < numOfValidators; ++i) 587 for (uint256 i; i < numOfKnotsToProcess; ++i) File: contracts/liquid-staking/SavETHVault.sol 63 for (uint256 i; i < numOfValidators; ++i) 103 for (uint256 i; i < numOfTokens; ++i) 116 for (uint256 i; i < numOfTokens; ++i) File: contracts/liquid-staking/StakingFundsVault.sol 78 for (uint256 i; i < numOfValidators; ++i) 152 for (uint256 i; i < numOfTokens; ++i) 166 for (uint256 i; i < numOfTokens; ++i) 203 for (uint256 i; i < _blsPubKeys.length; ++i) 266 for (uint256 i; i < _blsPublicKeys.length; ++i) 276 for (uint256 i; i < _blsPubKeys.length; ++i) 286 for (uint256 i; i < _token.length; ++i) File: contracts/syndicate/Syndicate.sol 211 for (uint256 i; i < _blsPubKeys.length; ++i) 259 for (uint256 i; i < _blsPubKeys.length; ++i) 301 for (uint256 i; i < _blsPubKeys.length; ++i) 346 for (uint256 i; i < _blsPubKeys.length; ++i) 420 for (uint256 i; i < numberOfCollateralisedSlotOwnersForKnot; ++i) 513 for (uint256 i; i < numberOfCollateralisedSlotOwnersForKnot; ++i) 560 for (uint256 i; i < knotsToRegister; ++i) 585 for (uint256 i; i < _priorityStakers.length; ++i) 598 for (uint256 i; i < _blsPublicKeys.length; ++i) 648 for (uint256 i; i < _blsPubKeys.length; ++i)
The following formulas should be used : if (<x> == true) => if (<x>), if (<x> == false) => if (!<x>)
There are 16 instances of this issue:
File: contracts/liquid-staking/LiquidStakingManager.sol 291 require(isNodeRunnerBanned(msg.sender) == false, "Node runner is banned from LSD network"); 328 require(isBLSPublicKeyBanned(_blsPublicKeyOfKnot) == false, "BLS public key has already withdrawn or not a part of LSD network"); 332 require(isNodeRunnerBanned(nodeRunnerOfSmartWallet[associatedSmartWallet]) == false, "Node runner is banned from LSD network"); 332 require(isNodeRunnerBanned(nodeRunnerOfSmartWallet[associatedSmartWallet]) == false, "Node runner is banned from LSD network"); 393 require(isBLSPublicKeyBanned(_blsPubKeys[i]) == false, "BLS public key is banned or not a part of LSD network"); 436 require(_isNodeRunnerValid(msg.sender) == true, "Unrecognised node runner"); 437 require(isNodeRunnerBanned(msg.sender) == false, "Node runner is banned from LSD network"); 469 require(isBLSPublicKeyPartOfLSDNetwork(_blsPublicKey) == false, "BLS public key is banned or not a part of LSD network"); 541 require(isBLSPublicKeyBanned(blsPubKey) == false, "BLS public key is banned or not a part of LSD network"); 589 require(isBLSPublicKeyBanned(_blsPublicKeyOfKnots[i]) == false, "BLS public key is banned or not a part of LSD network"); 688 require(isNodeRunnerWhitelisted[_nodeRunner] == true, "Invalid node runner"); File: contracts/liquid-staking/SavETHVault.sol 64 require(liquidStakingManager.isBLSPublicKeyBanned(_blsPublicKeyOfKnots[i]) == false, "BLS public key is not part of LSD network"); 84 require(liquidStakingManager.isBLSPublicKeyBanned(_blsPublicKeyOfKnot) == false, "BLS public key is banned or not a part of LSD network"); File: contracts/liquid-staking/StakingFundsVault.sol 79 require(liquidStakingNetworkManager.isBLSPublicKeyBanned(_blsPublicKeyOfKnots[i]) == false, "BLS public key is not part of LSD network"); 114 require(liquidStakingNetworkManager.isBLSPublicKeyBanned(_blsPublicKeyOfKnot) == false, "BLS public key is banned or not a part of LSD network"); 204 require( liquidStakingNetworkManager.isBLSPublicKeyBanned(_blsPubKeys[i]) == false, "Unknown BLS public key" );
calldata instead of memory for function parameters type :If a reference type function parameter is read-only, it is cheaper in gas to use calldata instead of memory. Calldata is a non-modifiable, non-persistent area where function arguments are stored, and behaves mostly like memory.
There are 5 instances of this issue :
File: contracts/syndicate/Syndicate.sol 337 function updateCollateralizedSlotOwnersAccruedETH(bytes memory _blsPubKey) 343 function batchUpdateCollateralizedSlotOwnersAccruedETH(bytes[] memory _blsPubKeys) 359 function calculateUnclaimedFreeFloatingETHShare(bytes memory _blsPubKey, address _user) 491 function _updateCollateralizedSlotOwnersLiabilitySnapshot(bytes memory _blsPubKey) 555 function _registerKnotsToSyndicate(bytes[] memory _blsPubKeysForSyndicateKnots) 583 function _addPriorityStakers(address[] memory _priorityStakers) 610 function _deRegisterKnot(bytes memory _blsPublicKey)
require() statements that uses && saves gas :There is 1 instances of this issue :
File: contracts/liquid-staking/LiquidStakingManager.sol Line 357
require(_new != address(0) && _current != _new, "New is zero or current");
memory values should be emitted in events instead of storage ones :Here, the values emitted shouldnβt be read from storage. The existing memory values should be used instead, this will save ~101 GAS
File: contracts/liquid-staking/LiquidStakingManager.sol Line 270
emit WhitelistingStatusChanged(msg.sender, enableWhitelisting);
#0 - c4-judge
2022-12-02T19:57:04Z
dmvt marked the issue as grade-b