Platform: Code4rena
Start Date: 22/09/2022
Pot Size: $30,000 USDC
Total HM: 12
Participants: 133
Period: 3 days
Judge: 0xean
Total Solo HM: 2
Id: 165
League: ETH
Rank: 24/133
Findings: 4
Award: $147.47
š Selected for report: 0
š Solo Findings: 0
š Selected for report: ladboy233
Also found by: 0xSmartContract, 8olidity, Aymen0909, Chom, IllIllI, OptimismSec, PaludoX0, TomJ, ayeslick, cccz, csanuragjain, joestakey, neko_nyaa, pashov, peritoflores, rbserver, rvierdiiev
19.982 USDC - $19.98
https://github.com/code-423n4/2022-09-frax/blob/55ea6b1ef3857a277e2f47d42029bc0f3d6f9173/src/frxETHMinter.sol#L191-L196 https://github.com/code-423n4/2022-09-frax/blob/55ea6b1ef3857a277e2f47d42029bc0f3d6f9173/src/ERC20/ERC20PermitPermissionedMint.sol#L94-L98 https://github.com/code-423n4/2022-09-frax/blob/55ea6b1ef3857a277e2f47d42029bc0f3d6f9173/src/OperatorRegistry.sol#L202-L206 https://github.com/code-423n4/2022-09-frax/blob/55ea6b1ef3857a277e2f47d42029bc0f3d6f9173/src/OperatorRegistry.sol#L53-L56 https://github.com/code-423n4/2022-09-frax/blob/55ea6b1ef3857a277e2f47d42029bc0f3d6f9173/src/OperatorRegistry.sol#L61-L79
There are many ways that an owner can rug protocol users.
Even if the owner is benevolent, the fact that there is a rug vector available may negatively impact the protocol's reputation.
Owner/Gov can 'recover' all Ether in the contract, including user deposits and witheld Ether:
File: /src/frxETHMinter.sol #1 191 function recoverEther(uint256 amount) external onlyByOwnGov { 192 (bool success,) = address(owner).call{ value: amount }(""); 193 require(success, "Invalid transfer"); 194 195 emit EmergencyEtherRecovered(amount); 196: }
Owner can bypass all timelocks by changing the timelock, which itself isn't behind a timelock:
File: /src/ERC20/ERC20PermitPermissionedMint.sol #2 94 function setTimelock(address _timelock_address) public onlyByOwnGov { 95 require(_timelock_address != address(0), "Zero address detected"); 96 timelock_address = _timelock_address; 97 emit TimelockChanged(_timelock_address); 98: }
File: /src/OperatorRegistry.sol #3 202 function setTimelock(address _timelock_address) external onlyByOwnGov { 203 require(_timelock_address != address(0), "Zero address detected"); 204 timelock_address = _timelock_address; 205 emit TimelockChanged(_timelock_address); 206: }
Owner can add a lot of invalid validator, causing functions that iterate over the list to revert:
File: /src/OperatorRegistry.sol #4 53 function addValidator(Validator calldata validator) public onlyByOwnGov { 54 validators.push(validator); 55 emit ValidatorAdded(validator.pubKey, curr_withdrawal_pubkey); 56: }
They can add invalid validators that just steal the funds, or cause calls to revert:
File: /src/OperatorRegistry.sol #5 61 function addValidators(Validator[] calldata validatorArray) external onlyByOwnGov { 62 uint arrayLength = validatorArray.length; 63 for (uint256 i = 0; i < arrayLength; ++i) { 64 addValidator(validatorArray[i]); 65 } 66 } 67 68 /// @notice Swap the location of one validator with another 69 function swapValidator(uint256 from_idx, uint256 to_idx) public onlyByOwnGov { 70 // Get the original values 71 Validator memory fromVal = validators[from_idx]; 72 Validator memory toVal = validators[to_idx]; 73 74 // Set the swapped values 75 validators[to_idx] = fromVal; 76 validators[from_idx] = toVal; 77 78 emit ValidatorsSwapped(fromVal.pubKey, toVal.pubKey, from_idx, to_idx); 79: }
Code inspection
Only allow Ether in excess of tracked amounts to be withdrawn, put timelock changes behind a timelock, and don't let the owner have any permissions - make everything done be done through Gov instead
#0 - FortisFortuna
2022-09-25T21:14:55Z
We are well aware of the permission structure. The owner will most likely be a large multisig. We mentioned the Frax Multisig in the scope too.
#1 - joestakey
2022-09-26T16:10:46Z
Duplicate of #107
š Selected for report: Lambda
Also found by: 0x1f8b, 0x5rings, 0xSky, 0xSmartContract, 8olidity, Chom, CodingNameKiki, IllIllI, Ruhum, Sm4rty, brgltd, hansfriese, m9800, magu, pashov, pedroais, peritoflores, prasantgupta52, rokinot, seyni
12.4859 USDC - $12.49
Some tokens do not implement the ERC20 standard properly but are still accepted by most code that accepts ERC20 tokens. For example Tether (USDT)'s transfer() and transferFrom() functions do not return booleans as the specification requires, and instead have no return value. When these sorts of tokens are cast to IERC20, their function signatures do not match and therefore the calls made revert.
The code as currently implemented does not handle these sorts of tokens properly when they're being recovered by an owner or by governance. The sole purpose of the recoverERC20() function is to recover tokens, and it is broken for these sorts of tokens.
// File: src/frxETHMinter.sol : frxETHMinter.recoverERC20() #1 199 function recoverERC20(address tokenAddress, uint256 tokenAmount) external onlyByOwnGov { 200 @> require(IERC20(tokenAddress).transfer(owner, tokenAmount), "recoverERC20: Transfer failed"); 201 202 emit EmergencyERC20Recovered(tokenAddress, tokenAmount); 203: }
Code inspection
Use OpenZeppelinās SafeERC20's safeTransfer() instead
#0 - FortisFortuna
2022-09-25T21:35:30Z
Not really medium risk. Technically you could use safeTransfer, but if someone were to accidentally send something to this contract, it would most likely be either ETH, FRAX, frxETH, or sfrxETH, all of which are transfer compliant.
#1 - joestakey
2022-09-26T16:09:39Z
Duplicate of #18
š Selected for report: rotcivegaf
Also found by: 0x040, 0x1f8b, 0x4non, 0xNazgul, 0xSmartContract, 0xf15ers, 8olidity, Aymen0909, B2, Bahurum, Bnke0x0, Ch_301, CodingNameKiki, Deivitto, Diana, Funen, IllIllI, JC, JLevick, KIntern_NA, Lambda, OptimismSec, PaludoX0, RockingMiles, Rolezn, Sm4rty, Soosh, Tagir2003, Tointer, TomJ, Triangle, Trust, V_B, Waze, Yiko, __141345__, a12jmx, ajtra, asutorufos, ayeslick, aysha, bbuddha, bharg4v, bobirichman, brgltd, bytera, c3phas, cryptostellar5, cryptphi, csanuragjain, datapunk, delfin454000, durianSausage, exd0tpy, gogo, got_targ, jag, joestakey, karanctf, ladboy233, leosathya, lukris02, mics, millersplanet, natzuu, neko_nyaa, obront, oyc_109, parashar, peritoflores, rbserver, ret2basic, rokinot, ronnyx2017, rvierdiiev, sach1r0, seyni, sikorico, slowmoses, tnevler, yasir, yongskiws
39.7592 USDC - $39.76
| Issue | Instances | |
|---|---|---|
| [Nā01] | public functions not called by the contract should be declared external instead | 8 |
| [Nā02] | constants should be defined rather than using magic numbers | 1 |
| [Nā03] | Use a more recent version of solidity | 1 |
| [Nā04] | Non-library/interface files should use fixed compiler versions, not floating ones | 5 |
| [Nā05] | Event is missing indexed fields | 19 |
| [Nā06] | Not using the named return variables anywhere in the function is confusing | 3 |
| [Nā07] | Duplicated require()/revert() checks should be refactored to a modifier or function | 2 |
Total: 39 instances over 7 issues
public functions not called by the contract should be declared external insteadContracts are allowed to override their parents' functions and change the visibility from external to public.
There are 8 instances of this issue:
File: src/ERC20/ERC20PermitPermissionedMint.sol 53: function minter_burn_from(address b_address, uint256 b_amount) public onlyMinters { 59: function minter_mint(address m_address, uint256 m_amount) public onlyMinters { 65: function addMinter(address minter_address) public onlyByOwnGov { 76: function removeMinter(address minter_address) public onlyByOwnGov { 94: function setTimelock(address _timelock_address) public onlyByOwnGov {
File: src/OperatorRegistry.sol 82: function popValidators(uint256 times) public onlyByOwnGov { 93: function removeValidator(uint256 remove_idx, bool dont_care_about_ordering) public onlyByOwnGov {
File: src/sfrxETH.sol 54: function pricePerShare() public view returns (uint256) {
constants should be defined rather than using magic numbersEven assembly can benefit from using readable constants instead of hex/numeric literals
There is 1 instance of this issue:
File: src/sfrxETH.sol /// @audit 1e18 55: return convertToAssets(1e18);
Use a solidity version of at least 0.8.13 to get the ability to use using for with a list of free functions
There is 1 instance of this issue:
File: lib/ERC4626/src/xERC4626.sol 4: pragma solidity ^0.8.0;
There are 5 instances of this issue:
File: src/ERC20/ERC20PermitPermissionedMint.sol 2: pragma solidity ^0.8.0;
File: src/frxETHMinter.sol 2: pragma solidity ^0.8.0;
File: src/frxETH.sol 2: pragma solidity ^0.8.0;
File: src/OperatorRegistry.sol 2: pragma solidity ^0.8.0;
File: src/sfrxETH.sol 2: pragma solidity ^0.8.0;
indexed fieldsIndex event fields make the field more quickly accessible to off-chain tools that parse events. However, note that each index field costs extra gas during emission, so it's not necessarily best to index the maximum allowed per event (three fields). Each event should use three indexed fields if there are three or more fields, and gas usage is not particularly of concern for the events in question. If there are fewer than three fields, all of the fields should be indexed.
There are 19 instances of this issue:
File: src/ERC20/ERC20PermitPermissionedMint.sol 102: event TokenMinterBurned(address indexed from, address indexed to, uint256 amount); 103: event TokenMinterMinted(address indexed from, address indexed to, uint256 amount); 104: event MinterAdded(address minter_address); 105: event MinterRemoved(address minter_address); 106: event TimelockChanged(address timelock_address);
File: src/frxETHMinter.sol 205: event EmergencyEtherRecovered(uint256 amount); 206: event EmergencyERC20Recovered(address tokenAddress, uint256 tokenAmount); 207: event ETHSubmitted(address indexed sender, address indexed recipient, uint256 sent_amount, uint256 withheld_amt); 208: event DepositEtherPaused(bool new_status); 209: event DepositSent(bytes indexed pubKey, bytes withdrawalCredential); 210: event SubmitPaused(bool new_status); 211: event WithheldETHMoved(address indexed to, uint256 amount); 212: event WithholdRatioSet(uint256 newRatio);
File: src/OperatorRegistry.sol 208: event TimelockChanged(address timelock_address); 209: event WithdrawalCredentialSet(bytes _withdrawalCredential); 210: event ValidatorAdded(bytes pubKey, bytes withdrawalCredential); 212: event ValidatorRemoved(bytes pubKey, uint256 remove_idx, bool dont_care_about_ordering); 213: event ValidatorsPopped(uint256 times); 214: event ValidatorsSwapped(bytes from_pubKey, bytes to_pubKey, uint256 from_idx, uint256 to_idx);
Consider changing the variable to be an unnamed one
There are 3 instances of this issue:
File: src/frxETHMinter.sol /// @audit shares 70: function submitAndDeposit(address recipient) external payable returns (uint256 shares) {
File: src/sfrxETH.sol /// @audit shares 59 function depositWithSignature( 60 uint256 assets, 61 address receiver, 62 uint256 deadline, 63 bool approveMax, 64 uint8 v, 65 bytes32 r, 66 bytes32 s 67: ) external nonReentrant returns (uint256 shares) { /// @audit assets 75 function mintWithSignature( 76 uint256 shares, 77 address receiver, 78 uint256 deadline, 79 bool approveMax, 80 uint8 v, 81 bytes32 r, 82 bytes32 s 83: ) external nonReentrant returns (uint256 assets) {
require()/revert() checks should be refactored to a modifier or functionThe compiler will inline the function, which will avoid JUMP instructions usually associated with functions
There are 2 instances of this issue:
File: src/ERC20/ERC20PermitPermissionedMint.sol 77: require(minter_address != address(0), "Zero address detected");
File: src/frxETHMinter.sol 193: require(success, "Invalid transfer");
š Selected for report: pfapostol
Also found by: 0x040, 0x1f8b, 0x4non, 0x5rings, 0xA5DF, 0xNazgul, 0xSmartContract, 0xmatt, 0xsam, Amithuddar, Aymen0909, B2, Ben, Bnke0x0, Chom, CodingNameKiki, Deivitto, Diana, Fitraldys, Funen, IllIllI, JAGADESH, JC, Metatron, Ocean_Sky, PaludoX0, Pheonix, RaymondFam, ReyAdmirado, RockingMiles, Rohan16, Rolezn, Satyam_Sharma, Sm4rty, SnowMan, SooYa, Tagir2003, TomJ, Tomio, Triangle, V_B, Waze, __141345__, ajtra, albincsergo, asutorufos, aysha, beardofginger, bobirichman, brgltd, bulej93, bytera, c3phas, ch0bu, cryptostellar5, cryptphi, d3e4, delfin454000, dharma09, drdr, durianSausage, emrekocak, erictee, fatherOfBlocks, gogo, got_targ, imare, jag, karanctf, ladboy233, leosathya, lukris02, medikko, mics, millersplanet, natzuu, neko_nyaa, oyc_109, peanuts, prasantgupta52, rbserver, ret2basic, rokinot, ronnyx2017, rotcivegaf, sach1r0, samruna, seyni, slowmoses, tnevler, wagmi, zishansami
75.238 USDC - $75.24
| Issue | Instances | Total Gas Saved | |
|---|---|---|---|
| [Gā01] | Using calldata instead of memory for read-only arguments in external functions saves gas | 3 | 360 |
| [Gā02] | Avoid contract existence checks by using solidity version 0.8.10 or later | 1 | 100 |
| [Gā03] | State variables should be cached in stack variables rather than re-reading them from storage | 11 | 1067 |
| [Gā04] | <x> += <y> costs more gas than <x> = <x> + <y> for state variables | 4 | 452 |
| [Gā05] | <array>.length should not be looked up in every loop of a for-loop | 2 | 200 |
| [Gā06] | ++i/i++ should be unchecked{++i}/unchecked{i++} when it is not possible for them to overflow, as is the case when used in for- and while-loops | 5 | 300 |
| [Gā07] | require()/revert() strings longer than 32 bytes cost extra gas | 1 | - |
| [Gā08] | Optimize names to save gas | 5 | 110 |
| [Gā09] | Using bools for storage incurs overhead | 4 | 80000 |
| [Gā10] | Use a more recent version of solidity | 6 | - |
| [Gā11] | Using > 0 costs more gas than != 0 when used on a uint in a require() statement | 2 | 12 |
| [Gā12] | ++i costs less gas than i++, especially when it's used in for-loops (--i/i-- too) | 1 | 10 |
| [Gā13] | Using private rather than public for constants, saves gas | 3 | - |
| [Gā14] | Don't compare boolean expressions to boolean literals | 3 | 27 |
| [Gā15] | Use custom errors rather than revert()/require() strings to save gas | 21 | - |
| [Gā16] | Functions guaranteed to revert when called by normal users can be marked payable | 19 | 399 |
Total: 91 instances over 16 issues with 83037 gas saved
Gas totals use lower bounds of ranges and count two iterations of each for-loop. All values above are runtime, not deployment, values
calldata instead of memory for read-only arguments in external functions saves gasWhen a function with a memory array is called externally, the abi.decode() step has to use a for-loop to copy each index of the calldata to the memory index. Each iteration of this for-loop costs at least 60 gas (i.e. 60 * <mem_array>.length). Using calldata directly, obliviates the need for such a loop in the contract code and runtime execution. Note that even if an interface defines a function as having memory arguments, it's still valid for implementation contracs to use calldata arguments instead.
If the array is passed to an internal function which passes the array to another internal function where the array is modified and therefore memory is used in the external call, it's still more gass-efficient to use calldata when the external function uses modifiers, since the modifiers may prevent the internal functions from being called. Structs have the same overhead as an array of length one
Note that I've also flagged instances where the function is public but can be marked as external since it's not called by the contract, and cases where a constructor is involved
There are 3 instances of this issue:
File: src/OperatorRegistry.sol /// @audit pubKey /// @audit signature 171 function getValidatorStruct( 172 bytes memory pubKey, 173 bytes memory signature, 174 bytes32 depositDataRoot 175: ) external pure returns (Validator memory) { /// @audit _new_withdrawal_pubkey 181: function setWithdrawalCredential(bytes memory _new_withdrawal_pubkey) external onlyByOwnGov {
Prior to 0.8.10 the compiler inserted extra code, including EXTCODESIZE (100 gas), to check for contract existence for external calls. In more recent solidity versions, the compiler will not insert these checks if the external call has a return value
There is 1 instance of this issue:
File: src/frxETHMinter.sol /// @audit transfer() 200: require(IERC20(tokenAddress).transfer(owner, tokenAmount), "recoverERC20: Transfer failed");
The instances below point to the second+ access of a state variable within a function. Caching of a state variable replace each Gwarmaccess (100 gas) with a much cheaper stack read. Other less obvious fixes/optimizations include having local memory caches of state variable structs, or having local caches of state variable contracts/addresses.
There are 11 instances of this issue:
File: src/ERC20/ERC20PermitPermissionedMint.sol /// @audit minters_array on line 84 85: if (minters_array[i] == minter_address) {
File: src/frxETHMinter.sol /// @audit withholdRatio on line 95 96: withheld_amt = (msg.value * withholdRatio) / RATIO_PRECISION; /// @audit submitPaused on line 178 180: emit SubmitPaused(submitPaused); /// @audit depositEtherPaused on line 185 187: emit DepositEtherPaused(depositEtherPaused);
File: src/OperatorRegistry.sol /// @audit validators on line 71 72: Validator memory toVal = validators[to_idx]; /// @audit validators on line 95 100: swapValidator(remove_idx, validators.length - 1); /// @audit validators on line 100 103: validators.pop(); /// @audit validators on line 103 108: Validator[] memory original_validators = validators; /// @audit validators on line 108 111: delete validators; /// @audit validators on line 111 116: validators.push(original_validators[i]); /// @audit validators on line 140 141: validators.pop();
<x> += <y> costs more gas than <x> = <x> + <y> for state variablesUsing the addition operator instead of plus-equals saves 113 gas
There are 4 instances of this issue:
File: lib/ERC4626/src/xERC4626.sol 67: storedTotalAssets -= amount; 72: storedTotalAssets += amount;
File: src/frxETHMinter.sol 97: currentWithheldETH += withheld_amt; 168: currentWithheldETH -= amount;
<array>.length should not be looked up in every loop of a for-loopThe overheads outlined below are PER LOOP, excluding the first loop
MLOAD (3 gas)CALLDATALOAD (3 gas)Caching the length changes each of these to a DUP<N> (3 gas), and gets rid of the extra DUP<N> needed to store the stack offset
There are 2 instances of this issue:
File: src/ERC20/ERC20PermitPermissionedMint.sol 84: for (uint i = 0; i < minters_array.length; i++){
File: src/OperatorRegistry.sol 114: for (uint256 i = 0; i < original_validators.length; ++i) {
++i/i++ should be unchecked{++i}/unchecked{i++} when it is not possible for them to overflow, as is the case when used in for- and while-loopsThe unchecked keyword is new in solidity version 0.8.0, so this only applies to that version or higher, which these instances are. This saves 30-40 gas per loop
There are 5 instances of this issue:
File: src/ERC20/ERC20PermitPermissionedMint.sol 84: for (uint i = 0; i < minters_array.length; i++){
File: src/frxETHMinter.sol 129: for (uint256 i = 0; i < numDeposits; ++i) {
File: src/OperatorRegistry.sol 63: for (uint256 i = 0; i < arrayLength; ++i) { 84: for (uint256 i = 0; i < times; ++i) { 114: for (uint256 i = 0; i < original_validators.length; ++i) {
require()/revert() strings longer than 32 bytes cost extra gasEach extra memory word of bytes past the original 32 incurs an MSTORE which costs 3 gas
There is 1 instance of this issue:
File: src/frxETHMinter.sol 167: require(amount <= currentWithheldETH, "Not enough withheld ETH in contract");
public/external function names and public member variable names can be optimized to save gas. See this link for an example of how it works. Below are the interfaces/abstract contracts that can be optimized so that the most frequently-called functions use the least amount of gas possible during method lookup. Method IDs that have two leading zero bytes can save 128 gas each during deployment, and renaming functions to have lower method IDs will save 22 gas per call, per sorted position shifted
There are 5 instances of this issue:
File: lib/ERC4626/src/xERC4626.sol /// @audit syncRewards() 20: abstract contract xERC4626 is IxERC4626, ERC4626 {
File: src/ERC20/ERC20PermitPermissionedMint.sol /// @audit minter_burn_from(), minter_mint(), addMinter(), removeMinter(), setTimelock() 14: contract ERC20PermitPermissionedMint is ERC20Permit, ERC20Burnable, Owned {
File: src/frxETHMinter.sol /// @audit submitAndDeposit(), submit(), submitAndGive(), depositEther(), setWithholdRatio(), moveWithheldETH(), togglePauseSubmits(), togglePauseDepositEther(), recoverEther() 37: contract frxETHMinter is OperatorRegistry, ReentrancyGuard {
File: src/OperatorRegistry.sol /// @audit addValidator(), addValidators(), swapValidator(), popValidators(), removeValidator(), getValidator(), getValidatorStruct(), setWithdrawalCredential(), clearValidatorArray(), numValidators(), setTimelock() 28: contract OperatorRegistry is Owned {
File: src/sfrxETH.sol /// @audit pricePerShare(), depositWithSignature(), mintWithSignature() 40: contract sfrxETH is xERC4626, ReentrancyGuard {
bools for storage incurs overhead// Booleans are more expensive than uint256 or any type that takes up a full // word because each write operation emits an extra SLOAD to first read the // slot's contents, replace the bits taken up by the boolean, and then write // back. This is the compiler's defense against contract upgrades and // pointer aliasing, and it cannot be disabled.
https://github.com/OpenZeppelin/openzeppelin-contracts/blob/58f635312aa21f947cae5f8578638a85aa2519f5/contracts/security/ReentrancyGuard.sol#L23-L27
Use uint256(1) and uint256(2) for true/false to avoid a Gwarmaccess (100 gas) for the extra SLOAD, and to avoid Gsset (20000 gas) when changing from false to true, after having been true in the past
There are 4 instances of this issue:
File: src/ERC20/ERC20PermitPermissionedMint.sol 20: mapping(address => bool) public minters; // Mapping is also used for faster verification
File: src/frxETHMinter.sol 43: mapping(bytes => bool) public activeValidators; // Tracks validators (via their pubkeys) that already have 32 ETH in them 49: bool public submitPaused; 50: bool public depositEtherPaused;
Use a solidity version of at least 0.8.2 to get simple compiler automatic inlining
Use a solidity version of at least 0.8.3 to get better struct packing and cheaper multiple storage reads
Use a solidity version of at least 0.8.4 to get custom errors, which are cheaper at deployment than revert()/require() strings
Use a solidity version of at least 0.8.10 to have external calls skip contract existence checks if the external call has a return value
There are 6 instances of this issue:
File: lib/ERC4626/src/xERC4626.sol 4: pragma solidity ^0.8.0;
File: src/ERC20/ERC20PermitPermissionedMint.sol 2: pragma solidity ^0.8.0;
File: src/frxETHMinter.sol 2: pragma solidity ^0.8.0;
File: src/frxETH.sol 2: pragma solidity ^0.8.0;
File: src/OperatorRegistry.sol 2: pragma solidity ^0.8.0;
File: src/sfrxETH.sol 2: pragma solidity ^0.8.0;
> 0 costs more gas than != 0 when used on a uint in a require() statementThis change saves 6 gas per instance. The optimization works until solidity version 0.8.13 where there is a regression in gas costs.
There are 2 instances of this issue:
File: src/frxETHMinter.sol 79: require(sfrxeth_recieved > 0, 'No sfrxETH was returned'); 126: require(numDeposits > 0, "Not enough ETH in contract");
++i costs less gas than i++, especially when it's used in for-loops (--i/i-- too)Saves 5 gas per loop
There is 1 instance of this issue:
File: src/ERC20/ERC20PermitPermissionedMint.sol 84: for (uint i = 0; i < minters_array.length; i++){
private rather than public for constants, saves gasIf needed, the values can be read from the verified contract source code, or if there are multiple values there can be a single getter function that returns a tuple of the values of all currently-public constants. Saves 3406-3606 gas in deployment gas due to the compiler not having to create non-payable getter functions for deployment calldata, not having to store the bytes of the value outside of where it's used, and not adding another entry to the method ID table
There are 3 instances of this issue:
File: lib/ERC4626/src/xERC4626.sol 24: uint32 public immutable rewardsCycleLength;
File: src/frxETHMinter.sol 38: uint256 public constant DEPOSIT_SIZE = 32 ether; // ETH 2.0 minimum deposit size 39: uint256 public constant RATIO_PRECISION = 1e6; // 1,000,000
if (<x> == true) => if (<x>), if (<x> == false) => if (!<x>)
There are 3 instances of this issue:
File: src/ERC20/ERC20PermitPermissionedMint.sol 46: require(minters[msg.sender] == true, "Only minters"); 68: require(minters[minter_address] == false, "Address already exists"); 78: require(minters[minter_address] == true, "Address nonexistant");
revert()/require() strings to save gasCustom errors are available from solidity version 0.8.4. Custom errors save ~50 gas each time they're hit by avoiding having to allocate and store the revert string. Not defining the strings also save deployment gas
There are 21 instances of this issue:
File: src/ERC20/ERC20PermitPermissionedMint.sol 41: require(msg.sender == timelock_address || msg.sender == owner, "Not owner or timelock"); 46: require(minters[msg.sender] == true, "Only minters"); 66: require(minter_address != address(0), "Zero address detected"); 68: require(minters[minter_address] == false, "Address already exists"); 77: require(minter_address != address(0), "Zero address detected"); 78: require(minters[minter_address] == true, "Address nonexistant"); 95: require(_timelock_address != address(0), "Zero address detected");
File: src/frxETHMinter.sol 79: require(sfrxeth_recieved > 0, 'No sfrxETH was returned'); 87: require(!submitPaused, "Submit is paused"); 88: require(msg.value != 0, "Cannot submit 0"); 122: require(!depositEtherPaused, "Depositing ETH is paused"); 126: require(numDeposits > 0, "Not enough ETH in contract"); 140: require(!activeValidators[pubKey], "Validator already has 32 ETH"); 160: require (newRatio <= RATIO_PRECISION, "Ratio cannot surpass 100%"); 167: require(amount <= currentWithheldETH, "Not enough withheld ETH in contract"); 171: require(success, "Invalid transfer"); 193: require(success, "Invalid transfer");
File: src/OperatorRegistry.sol 46: require(msg.sender == timelock_address || msg.sender == owner, "Not owner or timelock"); 137: require(numVals != 0, "Validator stack is empty"); 182: require(numValidators() == 0, "Clear validator array first"); 203: require(_timelock_address != address(0), "Zero address detected");
payableIf a function modifier such as onlyOwner is used, the function will revert if a normal user tries to pay the function. Marking the function as payable will lower the gas cost for legitimate callers because the compiler will not include checks for whether a payment was provided. The extra opcodes avoided are
CALLVALUE(2),DUP1(3),ISZERO(3),PUSH2(3),JUMPI(10),PUSH1(3),DUP1(3),REVERT(0),JUMPDEST(1),POP(2), which costs an average of about 21 gas per call to the function, in addition to the extra deployment cost
There are 19 instances of this issue:
File: src/ERC20/ERC20PermitPermissionedMint.sol 53: function minter_burn_from(address b_address, uint256 b_amount) public onlyMinters { 59: function minter_mint(address m_address, uint256 m_amount) public onlyMinters { 65: function addMinter(address minter_address) public onlyByOwnGov { 76: function removeMinter(address minter_address) public onlyByOwnGov { 94: function setTimelock(address _timelock_address) public onlyByOwnGov {
File: src/frxETHMinter.sol 159: function setWithholdRatio(uint256 newRatio) external onlyByOwnGov { 166: function moveWithheldETH(address payable to, uint256 amount) external onlyByOwnGov { 177: function togglePauseSubmits() external onlyByOwnGov { 184: function togglePauseDepositEther() external onlyByOwnGov { 191: function recoverEther(uint256 amount) external onlyByOwnGov { 199: function recoverERC20(address tokenAddress, uint256 tokenAmount) external onlyByOwnGov {
File: src/OperatorRegistry.sol 53: function addValidator(Validator calldata validator) public onlyByOwnGov { 61: function addValidators(Validator[] calldata validatorArray) external onlyByOwnGov { 69: function swapValidator(uint256 from_idx, uint256 to_idx) public onlyByOwnGov { 82: function popValidators(uint256 times) public onlyByOwnGov { 93: function removeValidator(uint256 remove_idx, bool dont_care_about_ordering) public onlyByOwnGov { 181: function setWithdrawalCredential(bytes memory _new_withdrawal_pubkey) external onlyByOwnGov { 190: function clearValidatorArray() external onlyByOwnGov { 202: function setTimelock(address _timelock_address) external onlyByOwnGov {