Platform: Code4rena
Start Date: 24/03/2023
Pot Size: $49,200 USDC
Total HM: 20
Participants: 246
Period: 6 days
Judge: Picodes
Total Solo HM: 1
Id: 226
League: ETH
Rank: 181/246
Findings: 1
Award: $13.13
🌟 Selected for report: 0
🚀 Solo Findings: 0
🌟 Selected for report: brgltd
Also found by: 0x3b, 0xAgro, 0xGusMcCrae, 0xNorman, 0xRajkumar, 0xSmartContract, 0xTraub, 0xWagmi, 0xWaitress, 0xffchain, 0xhacksmithh, 0xkazim, 0xnev, 3dgeville, ArbitraryExecution, Aymen0909, BRONZEDISC, Bason, Bloqarl, BlueAlder, Brenzee, CodeFoxInc, CodingNameKiki, Cryptor, DadeKuma, DevABDee, Diana, Dug, Englave, Gde, Haipls, HollaDieWaldfee, Ignite, Infect3d, Jerry0x, Josiah, Kaysoft, Koko1912, KrisApostolov, Lavishq, LeoGold, Madalad, PNS, Rappie, RaymondFam, RedTiger, Rickard, Rolezn, Sathish9098, SunSec, T1MOH, UdarTeam, Udsen, Viktor_Cortess, Wander, adriro, ak1, alejandrocovrr, alexzoid, arialblack14, ayden, bin2chen, brevis, btk, c3phas, carlitox477, catellatech, ch0bu, chaduke, ck, climber2002, codeslide, descharre, dingo2077, ernestognw, fatherOfBlocks, favelanky, georgits, helios, hl_, inmarelibero, juancito, ks__xxxxx, lopotras, lukris02, m_Rassska, mahdirostami, maxper, nadin, navinavu, nemveer, p_crypt0, peanuts, pipoca, pixpi, qpzm, rbserver, reassor, roelio, rotcivegaf, scokaf, siddhpurakaran, slvDev, smaul, tnevler, tsvetanovv, turvy_fuzz, vagrant, wen, yac, zzzitron
13.1298 USDC - $13.13
| Issues Details | Instances | |
|---|---|---|
| [Low-1] | Loss of Precision due to rounding | 1 |
| [Low-2] | Function Parameters Without Bounds | 1 |
| [Low-3] | Missing deadline checks in swapExactInputSingleHop() function | 1 |
| [Low-4] | Lack of zero address checks | 4 |
| [Low-5] | Pragma Float | All Contracts |
In the stake function, the ethAmount is calculated by (msg.value * weight) / totalWeight at line 88. Due to a potential loss of precision when rounding, there is a possibility that some wei may remain in the SafEth contract.
For instance, consider the following initial state:
msg.value = 200;
weights[0] = 10;
weights[1] = 20;
weights[2] = 30;
totalWeight = 60;
https://github.com/code-423n4/2023-03-asymmetry/blob/main/contracts/SafEth/SafEth.sol#L84-L88
for (uint i = 0; i < derivativeCount; i++) { uint256 weight = weights[i]; IDerivative derivative = derivatives[i]; if (weight == 0) continue; uint256 ethAmount = (msg.value * weight) / totalWeight;
In this scenario, the ethAmount values would be 33, 66, and 99 for the three iterations of the loop, respectively. Therefore, there would be small wei left in the SafETH contract since 200 - (33 + 66 + 99) = 2 (without slippage).
Transfer the remaining wei back to the sender.
Otherwise, use a different mechanism to allocate funds, instead of calculating ethAmount based on weights, the contract could use a fixed price for each derivative or allow users to specify the exact amount of ETH they want to allocate to each derivative.
The function can be called with any input value for those parameters, regardless of whether they are valid or reasonable. This can lead to unexpected behavior or even security vulnerabilities if the function does not properly validate or sanitize its input parameters. For example:
https://github.com/code-423n4/2023-03-asymmetry/blob/main/contracts/SafEth/SafEth.sol#L202-L208
function setMaxSlippage( uint _derivativeIndex, uint _slippage ) external onlyOwner { derivatives[_derivativeIndex].setMaxSlippage(_slippage); emit SetMaxSlippage(_derivativeIndex, _slippage); }
Define limits or constraints on function parameters to prevent unintended consequences.
swapExactInputSingleHop() functionThe swapExactInputSingleHop() function lacks a deadline for its actions that execute swaps on the deposit() function. This missing feature can result in pending transactions being executed later, potentially leading to outdated slippage.
function swapExactInputSingleHop( address _tokenIn, address _tokenOut, uint24 _poolFee, uint256 _amountIn, uint256 _minOut ) private returns (uint256 amountOut) {
Adding a deadline parameter to function which perform a swap.
If the variable get configured with address zero, failure to immediately reset the value can result in unexpected behavior for the project.
The following table contains all instances where variables are assigned an address:
Add zero address checks.
All the contracts being considered do not specify a specific pragma version. However, the hardhat config file uses solidity version 0.8.13 for deployment, which is known to have a well-known bug (https://docs.soliditylang.org/en/v0.8.19/bugs.html).
Setting a specific pragma version is an effective way to prevent contracts from being deployed with an outdated compiler version. I recommend using the latest stable version of Solidity, which is 0.8.19, instead of relying on an older version like 0.8.13 that is known to have bugs.
| Issues | Instances | |
|---|---|---|
| NC-1 | Using uint256 rather than uint | 14 |
uint256 rather than uintUsing uint256 instead of uint is for clarity and consistency. Using uint256 indicates that you are specifically declaring an unsigned integer of 256 bits, while using uint may be less clear and may lead to confusion with other integer types that have a different number of bits.
The following table contains all instances where uint is used:
Using uint256 rather than uint.
#0 - c4-sponsor
2023-04-10T19:50:12Z
elmutt marked the issue as sponsor confirmed
#1 - c4-judge
2023-04-24T18:44:43Z
Picodes marked the issue as grade-b