Platform: Code4rena
Start Date: 04/11/2022
Pot Size: $42,500 USDC
Total HM: 9
Participants: 88
Period: 4 days
Judge: 0xean
Total Solo HM: 2
Id: 180
League: ETH
Rank: 9/88
Findings: 2
Award: $489.28
🌟 Selected for report: 0
🚀 Solo Findings: 0
138.2838 USDC - $138.28
https://github.com/code-423n4/2022-11-size/blob/main/src/SizeSealed.sol#L98-L100 https://github.com/code-423n4/2022-11-size/blob/main/src/SizeSealed.sol#L163 https://github.com/code-423n4/2022-11-size/blob/main/src/SizeSealed.sol#L351 https://github.com/code-423n4/2022-11-size/blob/main/src/SizeSealed.sol#L381-L384 https://github.com/code-423n4/2022-11-size/blob/main/src/SizeSealed.sol#L409 https://github.com/code-423n4/2022-11-size/blob/main/src/SizeSealed.sol#L439
Hence this may lead to miscalculation of funds and may lead to loss of funds, because if safetransfer() and safetransferfrom() are called on a token address that doesn't have a contract in it, it will always return success, bypassing the return value check. Due to this protocol will think that funds have been transferred successfully, and records will be accordingly calculated, but in reality, funds were never transferred. So this will lead to miscalculation and possibly loss of funds
https://github.com/code-423n4/2022-11-size/blob/main/src/SizeSealed.sol#L98-L100
'SafeTransferLib.safeTransferFrom( ERC20(auctionParams.baseToken), msg.sender, address(this), auctionParams.totalBaseAmount );'
https://github.com/code-423n4/2022-11-size/blob/main/src/SizeSealed.sol#L163
'SafeTransferLib.safeTransferFrom(ERC20(a.params.quoteToken), msg.sender, address(this), quoteAmount);'
https://github.com/code-423n4/2022-11-size/blob/main/src/SizeSealed.sol#L351
'SafeTransferLib.safeTransfer(ERC20(a.params.quoteToken), msg.sender, b.quoteAmount);'
https://github.com/code-423n4/2022-11-size/blob/main/src/SizeSealed.sol#L381-L384
' SafeTransferLib.safeTransfer(ERC20(a.params.quoteToken), msg.sender, refundedQuote); } SafeTransferLib.safeTransfer(ERC20(a.params.baseToken), msg.sender, baseTokensAvailable);'
https://github.com/code-423n4/2022-11-size/blob/main/src/SizeSealed.sol#L409
'SafeTransferLib.safeTransfer(ERC20(a.params.baseToken), msg.sender, a.params.totalBaseAmount);'
https://github.com/code-423n4/2022-11-size/blob/main/src/SizeSealed.sol#L439
'SafeTransferLib.safeTransfer(ERC20(a.params.quoteToken), msg.sender, b.quoteAmount);'
Manual code review
Use openzeppelin's safeERC20 or implement a code existence check
#0 - c4-judge
2022-11-09T15:18:41Z
0xean marked the issue as duplicate
#1 - c4-judge
2022-12-06T00:23:16Z
0xean marked the issue as satisfactory
🌟 Selected for report: 0x1f8b
Also found by: 0xSmartContract, 0xdeadbeef, Aymen0909, B2, Bnke0x0, Deivitto, Diana, Dinesh11G, JC, RaymondFam, ReyAdmirado, Rolezn, Sathish9098, TomJ, ajtra, aviggiano, chaduke, cryptostellar5, djxploit, gianganhnguyen, gogo, halden, karanctf, leosathya, lukris02, mcwildy, oyc_109, ret2basic, skyle, slowmoses
351.0013 USDC - $351.00
immutableAvoids a Gusset (20000 gas)
2022-11-size/src/SizeSealed.sol::20 => uint256 public currentAuctionId;
<array>.length should not be looked up in every loop of a for loopEven memory arrays incur the overhead of bit tests and bit shifts to calculate the array length. Storage array length checks incur an extra Gwarmaccess (100 gas) PER-LOOP.
2022-11-size/src/SizeSealed.sol::244 => for (uint256 i; i < bidIndices.length; i++) {
++i/i++ should be unchecked{++i}/unchecked{++i} when it is not possible for them to overflow, as is the case when used in for and while loops2022-11-size/src/SizeSealed.sol::244 => for (uint256 i; i < bidIndices.length; i++) { 2022-11-size/src/SizeSealed.sol::302 => for (uint256 i; i < seenBidMap.length - 1; i++) {
2022-11-size/src/SizeSealed.sol::379 => b.quoteAmount = 0; 2022-11-size/src/SizeSealed.sol::435 => b.commitment = 0;
++i costs less gas than i++, especially when it’s used in forloops (--i/i-- too)2022-11-size/src/SizeSealed.sol::244 => for (uint256 i; i < bidIndices.length; i++) { 2022-11-size/src/SizeSealed.sol::302 => for (uint256 i; i < seenBidMap.length - 1; i++) {
require()/revert() checks should be refactored to a modifier or function2022-11-size/src/SizeSealed.sol::61 => revert InvalidTimestamp(); 2022-11-size/src/SizeSealed.sol::141 => revert UnauthorizedCaller(); 2022-11-size/src/SizeSealed.sol::158 => revert InvalidState(); 2022-11-size/src/SizeSealed.sol::188 => revert InvalidPrivateKey(); 2022-11-size/src/SizeSealed.sol::228 => revert InvalidCalldata(); 2022-11-size/src/SizeSealed.sol::304 => revert InvalidState();
revert()/require() strings to save deployment gas2022-11-size/src/SizeSealed.sol::61 => revert InvalidTimestamp(); 2022-11-size/src/SizeSealed.sol::64 => revert InvalidTimestamp(); 2022-11-size/src/SizeSealed.sol::67 => revert InvalidTimestamp(); 2022-11-size/src/SizeSealed.sol::70 => revert InvalidTimestamp(); 2022-11-size/src/SizeSealed.sol::73 => revert InvalidCliffPercent(); 2022-11-size/src/SizeSealed.sol::81 => revert InvalidReserve(); 2022-11-size/src/SizeSealed.sol::104 => revert UnexpectedBalanceChange(); 2022-11-size/src/SizeSealed.sol::135 => revert InvalidProof(); 2022-11-size/src/SizeSealed.sol::141 => revert UnauthorizedCaller(); 2022-11-size/src/SizeSealed.sol::145 => revert InvalidBidAmount(); 2022-11-size/src/SizeSealed.sol::158 => revert InvalidState(); 2022-11-size/src/SizeSealed.sol::183 => revert UnauthorizedCaller(); 2022-11-size/src/SizeSealed.sol::188 => revert InvalidPrivateKey(); 2022-11-size/src/SizeSealed.sol::224 => revert InvalidPrivateKey(); 2022-11-size/src/SizeSealed.sol::228 => revert InvalidCalldata(); 2022-11-size/src/SizeSealed.sol::275 => revert InvalidSorting(); 2022-11-size/src/SizeSealed.sol::298 => revert InvalidCalldata(); 2022-11-size/src/SizeSealed.sol::304 => revert InvalidState(); 2022-11-size/src/SizeSealed.sol::310 => revert InvalidState(); 2022-11-size/src/SizeSealed.sol::314 => revert InvalidState(); 2022-11-size/src/SizeSealed.sol::340 => revert UnauthorizedCaller(); 2022-11-size/src/SizeSealed.sol::344 => revert InvalidState(); 2022-11-size/src/SizeSealed.sol::362 => revert UnauthorizedCaller(); 2022-11-size/src/SizeSealed.sol::367 => revert InvalidState(); 2022-11-size/src/SizeSealed.sol::394 => revert UnauthorizedCaller(); 2022-11-size/src/SizeSealed.sol::399 => revert InvalidState(); 2022-11-size/src/SizeSealed.sol::421 => revert UnauthorizedCaller(); 2022-11-size/src/SizeSealed.sol::427 => revert InvalidState();
calldata instead of memory for function parametersUse calldata instead of memory for function parameters. Having function arguments use calldata instead of memory can save gas.
2022-11-size/src/SizeSealed.sol::217 => function finalize(uint256 auctionId, uint256[] memory bidIndices, uint128 clearingBase, uint128 clearingQuote) 2022-11-size/src/util/ECCMath.sol::25 => function ecMul(Point memory point, uint256 scalar) internal view returns (Point memory) { 2022-11-size/src/util/ECCMath.sol::37 => function encryptMessage(Point memory encryptToPub, uint256 encryptWithPriv, bytes32 message) 2022-11-size/src/util/ECCMath.sol::51 => function decryptMessage(Point memory sharedPoint, bytes32 encryptedMessage) 2022-11-size/src/util/ECCMath.sol::60 => function hashPoint(Point memory point) internal pure returns (bytes32) {
Checking non-zero transfer values can avoid an expensive external call and save gas.
While this is done in some places, it’s not consistently done in the solution.
I suggest adding a non-zero-value check here:
2022-11-size/src/SizeSealed.sol::321 => SafeTransferLib.safeTransfer(ERC20(a.params.baseToken), a.data.seller, unsoldBase); 2022-11-size/src/SizeSealed.sol::327 => SafeTransferLib.safeTransfer(ERC20(a.params.quoteToken), a.data.seller, filledQuote); 2022-11-size/src/SizeSealed.sol::351 => SafeTransferLib.safeTransfer(ERC20(a.params.quoteToken), msg.sender, b.quoteAmount); 2022-11-size/src/SizeSealed.sol::381 => SafeTransferLib.safeTransfer(ERC20(a.params.quoteToken), msg.sender, refundedQuote); 2022-11-size/src/SizeSealed.sol::384 => SafeTransferLib.safeTransfer(ERC20(a.params.baseToken), msg.sender, baseTokensAvailable); 2022-11-size/src/SizeSealed.sol::409 => SafeTransferLib.safeTransfer(ERC20(a.params.baseToken), msg.sender, a.params.totalBaseAmount); 2022-11-size/src/SizeSealed.sol::439 => SafeTransferLib.safeTransfer(ERC20(a.params.quoteToken), msg.sender, b.quoteAmount);
abi.encode() is less efficient than abi.encodePacked()2022-11-size/src/SizeSealed.sol::467 => return keccak256(abi.encode(message)); 2022-11-size/src/SizeSealed.sol::471 => return bytes32(abi.encodePacked(baseAmount, salt)); 2022-11-size/src/util/ECCMath.sol::26 => bytes memory data = abi.encode(point, scalar); 2022-11-size/src/util/ECCMath.sol::61 => return keccak256(abi.encode(point));
2022-11-size/src/SizeSealed.sol::294 => data.filledBase += baseAmount; 2022-11-size/src/SizeSealed.sol::373 => b.baseWithdrawn += baseTokensAvailable;
It may not be obvious, but every time you copy a storage struct/array/mapping to a memory variable, you are copying each member by reading it from storage, which is expensive. And when you use the storage keyword, you are just storing a pointer to the storage, which is much cheaper. Exception: case when you need to read all or many members multiple times. In report included only cases that saved gas
2022-11-size/src/SizeSealed.sol::186 => ECCMath.Point memory pubKey = ECCMath.publicKey(privateKey); 2022-11-size/src/SizeSealed.sol::256 => ECCMath.Point memory sharedPoint = ECCMath.ecMul(b.pubKey, sellerPriv); 2022-11-size/src/ECCMath.sol::42 => Point memory sharedPoint = ecMul(encryptToPub, encryptWithPriv);
#0 - c4-judge
2022-11-10T02:29:04Z
0xean marked the issue as grade-a