Platform: Code4rena
Start Date: 26/09/2022
Pot Size: $50,000 USDC
Total HM: 13
Participants: 113
Period: 5 days
Judge: 0xean
Total Solo HM: 6
Id: 166
League: ETH
Rank: 20/113
Findings: 2
Award: $175.88
🌟 Selected for report: 0
🚀 Solo Findings: 0
🌟 Selected for report: 0xNazgul
Also found by: 0x1f8b, 0x52, 0xDecorativePineapple, 0xSmartContract, 0xmatt, Aeros, Aymen0909, Bnke0x0, Chom, CodingNameKiki, Deivitto, DimitarDimitrov, IllIllI, JC, Jeiwan, Lambda, Matin, Migue, Mukund, Ocean_Sky, Olivierdem, RaymondFam, RockingMiles, Rolezn, Ruhum, Satyam_Sharma, Shinchan, Tomo, Trabajo_de_mates, V_B, Waze, __141345__, a12jmx, ajtra, asutorufos, aysha, brgltd, bulej93, carrotsmuggler, catchup, cccz, chrisdior4, cryptonue, cryptphi, d3e4, defsec, delfin454000, durianSausage, erictee, fatherOfBlocks, gogo, kaden, karanctf, ladboy233, lukris02, mahdikarimi, martin, mics, natzuu, oyc_109, p_crypt0, pedr02b2, rbserver, reassor, rotcivegaf, rvierdiiev, sikorico, slowmoses, sorrynotsorry, tnevler, trustindistrust
79.9616 USDC - $79.96
Missing slipage protection may lead to losing assets while swapping them. Without slipage protection the swapper is allowed to give much less worth of target tokens than it should in a fair swap. to Missing slippage protection at:
no slippage protection at swapSupportingFeeOnInputTokens at AlgebraPool.sol at line 640
use openzeppilin's safeCast in:
https://github.com/code-423n4/2022-09-quickswap/tree/main/src/core/contracts/libraries/AdaptiveFee.sol#L25 : unsafe cast uint16(sumOfSigmoids) https://github.com/code-423n4/2022-09-quickswap/tree/main/src/core/contracts/libraries/SafeCast.sol#L12 : unsafe cast uint160(y) https://github.com/code-423n4/2022-09-quickswap/tree/main/src/core/contracts/libraries/DataStorage.sol#L148 : unsafe cast uint16(current) https://github.com/code-423n4/2022-09-quickswap/tree/main/src/core/contracts/DataStorageOperator.sol#L131 : unsafe cast uint128(volumeShifted)
The functions below fail to perform input validation on arrays to verify the lengths match. A mismatch could lead to an exception or undefined behavior. Consider making this a medium risk please.
https://github.com/code-423n4/2022-09-quickswap/tree/main/src/core/contracts/libraries/DataStorage.sol#L277 getTimepoints ['self', 'secondsAgos']
Division by 0 can lead to accidentally revert, (An example of a similar issue - https://github.com/code-423n4/2021-10-defiprotocol-findings/issues/84)
https://github.com/code-423n4/2022-09-quickswap/tree/main/src/core/contracts/libraries/DataStorage.sol#L353 time, oldest, oldestTimestamp might be 0 https://github.com/code-423n4/2022-09-quickswap/tree/main/src/core/contracts/libraries/FullMath.sol#L113 a might be 0 https://github.com/code-423n4/2022-09-quickswap/tree/main/src/core/contracts/libraries/DataStorage.sol#L414 blockTimestamp, last might be 0 https://github.com/code-423n4/2022-09-quickswap/tree/main/src/core/contracts/libraries/PriceMovementMath.sol#L62 amount might be 0 https://github.com/code-423n4/2022-09-quickswap/tree/main/src/core/contracts/libraries/DataStorage.sol#L256 time might be 0 https://github.com/code-423n4/2022-09-quickswap/tree/main/src/core/contracts/libraries/PriceMovementMath.sol#L67 amount might be 0 https://github.com/code-423n4/2022-09-quickswap/tree/main/src/core/contracts/libraries/DataStorage.sol#L255 time might be 0
owner param should be validated to make sure the owner address is not address(0). Otherwise if not given the right input all only owner accessible functions will be unaccessible.
AlgebraFactory.sol.setOwner _owner
Users can mistakenly think that the return value is the named return, but it is actually the actualreturn statement that comes after. To know that the user needs to read the code and is confusing. Furthermore, removing either the actual return or the named return will save gas.
AlgebraPool.sol, timepoints DataStorageOperator.sol, calculateVolumePerLiquidity PriceMovementMath.sol, getNewPriceAfterInput AlgebraPool.sol, swapSupportingFeeOnInputTokens TickTable.sol, getMostSignificantBit DataStorageOperator.sol, getFee DataStorageOperator.sol, getAverages DataStorage.sol, write TickManager.sol, cross FullMath.sol, mulDiv AlgebraPool.sol, _writeTimepoint DataStorageOperator.sol, write DataStorage.sol, binarySearch TickTable.sol, nextTickInTheSameRow DataStorage.sol, getAverages PriceMovementMath.sol, getNewPrice PriceMovementMath.sol, getNewPriceAfterOutput AdaptiveFee.sol, getFee DataStorageOperator.sol, getTimepoints DataStorage.sol, getSingleTimepoint AlgebraPool.sol, _getSingleTimepoint AlgebraPool.sol, getInnerCumulatives AdaptiveFee.sol, sigmoid
The following contracts have a function that allows them an admin to change it to a different address. If the admin accidentally uses an invalid address for which they do not have the private key, then the system gets locked. It is important to have two steps admin change where the first is announcing a pending new admin and the new address should then claim its ownership. A similar issue was reported in a previous contest and was assigned a severity of medium: code-423n4/2021-06-realitycards-findings#105
IAlgebraFactory.sol AlgebraFactory.sol
From solidity docs: Properly functioning code should never reach a failing assert statement; if this happens there is a bug in your contract which you should fix. With assert the user pays the gas and with require it doesn't. The ETH network gas isn't cheap and users can see it as a scam.
DataStorage.sol : reachable assert in line 189
Those are functions and parameters pairs that the function doesn't use the parameter. In case those functions are external/public this is even worst since the user is required to put value that never used and can misslead him and waste its time.
AlgebraPoolDeployer.sol: function deploy parameter dataStorage isn't used. (deploy is external) AlgebraPoolDeployer.sol: function deploy parameter _factory isn't used. (deploy is external) AlgebraPoolDeployer.sol: function deploy parameter token0 isn't used. (deploy is external) AlgebraPoolDeployer.sol: function deploy parameter token1 isn't used. (deploy is external)
Transferring tokens to the zero address is usually prohibited to accidentally avoid "burning" tokens by sending them to an unrecoverable zero address.
https://github.com/code-423n4/2022-09-quickswap/tree/main/src/core/contracts/AlgebraPool.sol#L479 https://github.com/code-423n4/2022-09-quickswap/tree/main/src/core/contracts/AlgebraPool.sol#L656 https://github.com/code-423n4/2022-09-quickswap/tree/main/src/core/contracts/AlgebraPool.sol#L604 https://github.com/code-423n4/2022-09-quickswap/tree/main/src/core/contracts/AlgebraPool.sol#L505 https://github.com/code-423n4/2022-09-quickswap/tree/main/src/core/contracts/AlgebraPool.sol#L906 https://github.com/code-423n4/2022-09-quickswap/tree/main/src/core/contracts/AlgebraPool.sol#L548
The following functions are missing commenting as describe below:
DataStorage.sol, _getAverageTick (internal), parameters self, time, tick, index, oldestIndex, lastTimestamp, lastTickCumulative not commented
To give more trust to users: functions that set key/critical variables should be put behind a timelock.
https://github.com/code-423n4/2022-09-quickswap/tree/main/src/core/contracts/AlgebraFactory.sol#L91 https://github.com/code-423n4/2022-09-quickswap/tree/main/src/core/contracts/AlgebraPool.sol#L959 https://github.com/code-423n4/2022-09-quickswap/tree/main/src/core/contracts/AlgebraFactory.sol#L98 https://github.com/code-423n4/2022-09-quickswap/tree/main/src/core/contracts/AlgebraPool.sol#L967 https://github.com/code-423n4/2022-09-quickswap/tree/main/src/core/contracts/AlgebraFactory.sol#L77 https://github.com/code-423n4/2022-09-quickswap/tree/main/src/core/contracts/AlgebraFactory.sol#L84 https://github.com/code-423n4/2022-09-quickswap/tree/main/src/core/contracts/AlgebraPool.sol#L952 https://github.com/code-423n4/2022-09-quickswap/tree/main/src/core/contracts/AlgebraPoolDeployer.sol#L36
Some fee parameters of functions are not checked for invalid values. Validate the parameters:
PriceMovementMath.movePriceTowardsTarget (fee) TickManager.getInnerFeeGrowth (totalFeeGrowth1Token) TickManager.update (totalFeeGrowth0Token) AlgebraPool.setCommunityFee (communityFee0) TickManager.getInnerFeeGrowth (totalFeeGrowth0Token) AlgebraPool.setCommunityFee (communityFee1) TickManager.cross (totalFeeGrowth0Token) TickManager.cross (totalFeeGrowth1Token) DataStorageOperator.changeFeeConfiguration (_feeConfig) TickManager.update (totalFeeGrowth1Token) AlgebraPool._recalculatePosition (innerFeeGrowth1Token) AlgebraFactory.setBaseFeeConfiguration (baseFee) AlgebraPool._recalculatePosition (innerFeeGrowth0Token)
The following requires are with empty messages. This is very important to add a message for any require. So the user has enough information to know the reason of failure.
Solidity file: AlgebraFactory.sol, In line 62 with Empty Require message. Solidity file: AlgebraPoolDeployer.sol, In line 38 with Empty Require message. Solidity file: AlgebraFactory.sol, In line 63 with Empty Require message. Solidity file: SafeCast.sol, In line 27 with Empty Require message. Solidity file: PriceMovementMath.sol, In line 53 with Empty Require message. Solidity file: DataStorageOperator.sol, In line 43 with Empty Require message. Solidity file: LowGasSafeMath.sol, In line 46 with Empty Require message. Solidity file: AlgebraPool.sol, In line 953 with Empty Require message. Solidity file: AlgebraPoolDeployer.sol, In line 37 with Empty Require message. Solidity file: AlgebraFactory.sol, In line 85 with Empty Require message. Solidity file: SafeCast.sol, In line 20 with Empty Require message. Solidity file: AlgebraPool.sol, In line 960 with Empty Require message. Solidity file: DataStorage.sol, In line 369 with Empty Require message. Solidity file: AlgebraFactory.sol, In line 78 with Empty Require message. Solidity file: TokenDeltaMath.sol, In line 51 with Empty Require message. Solidity file: AlgebraPool.sol, In line 968 with Empty Require message. Solidity file: PriceMovementMath.sol, In line 52 with Empty Require message. Solidity file: FullMath.sol, In line 33 with Empty Require message. Solidity file: AlgebraFactory.sol, In line 92 with Empty Require message. Solidity file: LowGasSafeMath.sol, In line 30 with Empty Require message. Solidity file: TokenDeltaMath.sol, In line 30 with Empty Require message. Solidity file: LowGasSafeMath.sol, In line 54 with Empty Require message. Solidity file: LowGasSafeMath.sol, In line 14 with Empty Require message. Solidity file: LowGasSafeMath.sol, In line 38 with Empty Require message. Solidity file: AlgebraFactory.sol, In line 60 with Empty Require message. Solidity file: LowGasSafeMath.sol, In line 22 with Empty Require message. Solidity file: SafeCast.sol, In line 13 with Empty Require message.
The following requires has a non comprehensive messages. This is very important to add a comprehensive message for any require. Such that the user has enough information to know the reason of failure:
Solidity file: AlgebraPool.sol, In line 898 with Require message: L Solidity file: TickMath.sol, In line 29 with Require message: T Solidity file: TransferHelper.sol, In line 22 with Require message: TF Solidity file: TickMath.sol, In line 67 with Require message: R Solidity file: AlgebraPool.sol, In line 921 with Require message: F0 Solidity file: AlgebraPool.sol, In line 636 with Require message: LOK Solidity file: TickManager.sol, In line 96 with Require message: LO Solidity file: AlgebraPool.sol, In line 194 with Require message: AI Solidity file: DataStorage.sol, In line 238 with Require message: OLD Solidity file: AlgebraPool.sol, In line 935 with Require message: F1 Solidity file: AlgebraPool.sol, In line 469 with Require message: IIL2 Solidity file: AlgebraPool.sol, In line 434 with Require message: IL
external / public functions parameters should be validated to make sure the address is not 0. Otherwise if not given the right input it can mistakenly lead to loss of user funds.
AlgebraPool.sol.swapSupportingFeeOnInputTokens sender AlgebraPool.sol.swapSupportingFeeOnInputTokens recipient AlgebraPoolDeployer.sol.deploy _factory AlgebraFactory.sol.createPool tokenB AlgebraPoolDeployer.sol.deploy token0 AlgebraFactory.sol.setFarmingAddress _farmingAddress AlgebraPoolDeployer.sol.setFactory _factory AlgebraPool.sol.collect recipient AlgebraPool.sol.mint sender AlgebraFactory.sol.setVaultAddress _vaultAddress AlgebraPool.sol.setIncentive virtualPoolAddress AlgebraPool.sol.flash recipient AlgebraPool.sol.swap recipient AlgebraFactory.sol.createPool tokenA AlgebraPoolDeployer.sol.deploy dataStorage AlgebraPool.sol.mint recipient AlgebraPoolDeployer.sol.deploy token1
The project is compiled with different versions of solidity, which is not recommended because it can lead to undefined behaviors.
You should use safe math for solidity version <8 since there is no default over/under flow check it suchversions of solidity.
The contract IAlgebraPoolState.sol doesn't use safe math and is of solidity version < 8 The contract DataStorageOperator.sol doesn't use safe math and is of solidity version < 8 The contract AdaptiveFee.sol doesn't use safe math and is of solidity version < 8 The contract TickMath.sol doesn't use safe math and is of solidity version < 8 The contract IAlgebraPoolActions.sol doesn't use safe math and is of solidity version < 8
🌟 Selected for report: IllIllI
Also found by: 0x1f8b, 0x5rings, 0xNazgul, 0xRoxas, 0xSmartContract, 0xbepresent, 0xmatt, Aeros, Amithuddar, Awesome, Aymen0909, B2, Bnke0x0, ChristianKuri, CodingNameKiki, Deivitto, Diraco, Fitraldys, HardlyCodeMan, JC, Mukund, Noah3o6, Olivierdem, RaymondFam, ReyAdmirado, RockingMiles, Rolezn, Ruhum, Saintcode_, Shinchan, SnowMan, TomJ, Tomio, Tomo, V_B, Waze, __141345__, ajtra, asutorufos, aysha, beardofginger, bobirichman, brgltd, bulej93, c3phas, ch0bu, cryptonue, defsec, delfin454000, dharma09, durianSausage, emrekocak, erictee, fatherOfBlocks, francoHacker, gianganhnguyen, gogo, imare, kaden, karanctf, ladboy233, lukris02, m_Rassska, martin, medikko, mics, natzuu, oyc_109, peiw, rbserver, ret2basic, rotcivegaf, saian, shark, slowmoses, tnevler, trustindistrust, zeesaw, zishansami
95.9193 USDC - $95.92
The following structs could change the order of their stored elements to decrease memory uses. and number of occupied slots. Therefore will save gas at every store and load from memory.
In AlgebraPool.sol, SwapCalculationCache is optimized to: 8 slots from: 9 slots. The new order of types (you choose the actual variables): 1. uint256 2. int256 3. int256 4. uint256 5. uint256 6. IAlgebraVirtualPool.Status 7. uint160 8. int56 9. int24 10. uint16 11. uint128 12. uint16 13. bool 14. bool
In the following files there are state variables that could be set immutable to save gas.
owner in AlgebraPoolDeployer.sol
Unused state variables are gas consuming at deployment (since they are located in storage) and are a bad code practice. Removing those variables will decrease deployment gas cost and improve code quality. This is a full list of all the unused storage variables we found in your code base.
AlgebraPoolDeployer.sol, parameters Constants.sol, RESOLUTION Constants.sol, Q96 Constants.sol, MAX_LIQUIDITY_COOLDOWN Constants.sol, COMMUNITY_FEE_DENOMINATOR Constants.sol, MAX_COMMUNITY_FEE Constants.sol, BASE_FEE PoolState.sol, tickTable PoolState.sol, liquidityCooldown PoolState.sol, totalFeeGrowth0Token PoolState.sol, volumePerLiquidityInBlock PoolState.sol, activeIncentive Constants.sol, Q128 PoolState.sol, ticks PoolState.sol, totalFeeGrowth1Token Constants.sol, MAX_LIQUIDITY_PER_TICK
Caching the array length is more gas efficient. This is because access to a local variable in solidity is more efficient than query storage / calldata / memory. We recommend to change from:
for (uint256 i=0; i<array.length; i++) { ... }
to:
uint len = array.length for (uint256 i=0; i<len; i++) { ... }
DataStorage.sol, secondsAgos, 307
Prefix increments are cheaper than postfix increments.
Further more, using unchecked {++x} is even more gas efficient, and the gas saving accumulates every iteration and can make a real change
There is no risk of overflow caused by increamenting the iteration index in for loops (the ++i in for (uint256 i = 0; i < numIterations; ++i)).
But increments perform overflow checks that are not necessary in this case.
These functions use not using prefix increments (++x) or not using the unchecked keyword:
change to prefix increment and unchecked: DataStorage.sol, i, 307
In for loops you initialize the index to start from 0, but it already initialized to 0 in default and this assignment cost gas. It is more clear and gas efficient to declare without assigning 0 and will have the same meaning:
DataStorage.sol, 307
You can change the order of the storage variables to decrease memory uses.
In Constants.sol,rearranging the storage fields can optimize to: 4 slots from: 5 slots. The new order of types (you choose the actual variables): 1. uint256 2. uint256 3. uint256 4. uint128 5. uint32 6. int24 7. uint16 8. uint8 9. uint8
Using != 0 is slightly cheaper than > 0. (see https://github.com/code-423n4/2021-12-maple-findings/issues/75 for similar issue)
AlgebraPool.sol, 734: change 'amountRequired > 0' to 'amountRequired != 0' AlgebraPool.sol, 911: change 'amount1 > 0' to 'amount1 != 0' PriceMovementMath.sol, 52: change 'price > 0' to 'price != 0' AlgebraPool.sol, 237: change 'liquidityDelta > 0' to 'liquidityDelta != 0' AlgebraPool.sol, 645: change 'balance > 0' to 'balance != 0' FullMath.sol, 114: change 'denominator > 0' to 'denominator != 0' DataStorageOperator.sol, 138: change 'liquidity > 0' to 'liquidity != 0' PriceMovementMath.sol, 53: change 'liquidity > 0' to 'liquidity != 0' AlgebraPool.sol, 451: change 'balance > 0' to 'balance != 0' AlgebraPool.sol, 454: change 'balance > 0' to 'balance != 0' AlgebraPool.sol, 455: change 'balance > 0' to 'balance != 0' DataStorage.sol, 80: change 'liquidity > 0' to 'liquidity != 0' TickMath.sol, 52: change 'tick > 0' to 'tick != 0' AlgebraPool.sol, 434: change 'liquidityDesired > 0' to 'liquidityDesired != 0' AlgebraPool.sol, 641: change 'balance > 0' to 'balance != 0' AlgebraPool.sol, 452: change 'balance > 0' to 'balance != 0' DataStorageOperator.sol, 139: change 'liquidity > 0' to 'liquidity != 0' AlgebraPool.sol, 904: change 'amount0 > 0' to 'amount0 != 0'
int128 TokenDeltaMath.sol.getToken1Delta - unnecessary casting int128(liquidity) int128 LiquidityMath.sol.addDelta - unnecessary casting int128(y) int128 TokenDeltaMath.sol.getToken0Delta - unnecessary casting int128(liquidity) int256 PriceMovementMath.sol.movePriceTowardsTarget - unnecessary casting int256(amountAvailable)
You can inline the following functions instead of writing a specific function to save gas. (see https://github.com/code-423n4/2021-11-nested-findings/issues/167 for a similar issue.)
AlgebraPool.sol, balanceToken1, { return IERC20Minimal(token1).balanceOf(address(this)); } AlgebraPool.sol, balanceToken0, { return IERC20Minimal(token0).balanceOf(address(this)); } PoolState.sol, _blockTimestamp, { return uint32(block.timestamp); // truncation is desired } PriceMovementMath.sol, getNewPriceAfterInput, { return getNewPrice(price, liquidity, input, zeroToOne, true); }
The following functions are used exactly once. Therefore you can inline them and save gas and improve code clearness.
FullMath.sol, mulDiv AlgebraPool.sol, _recalculatePosition DataStorage.sol, _volatilityOnRange DataStorage.sol, binarySearch LowGasSafeMath.sol, sub LowGasSafeMath.sol, add PriceMovementMath.sol, getNewPriceAfterInput PriceMovementMath.sol, getNewPriceAfterOutput TickTable.sol, getMostSignificantBit
Using newer compiler versions and the optimizer gives gas optimizations and additional safety checks are available for free.
The advantages of versions 0.8.* over <0.8.0 are:
1. Safemath by default from 0.8.0 (can be more gas efficient than library based safemath.) 2. Low level inliner : from 0.8.2, leads to cheaper runtime gas. Especially relevant when the contract has small functions. For example, OpenZeppelin libraries typically have a lot of small helper functions and if they are not inlined, they cost an additional 20 to 40 gas because of 2 extra jump instructions and additional stack operations needed for function calls. 3. Optimizer improvements in packed structs: Before 0.8.3, storing packed structs, in some cases used an additional storage read operation. After EIP-2929, if the slot was already cold, this means unnecessary stack operations and extra deploy time costs. However, if the slot was already warm, this means additional cost of 100 gas alongside the same unnecessary stack operations and extra deploy time costs. 4. Custom errors from 0.8.4, leads to cheaper deploy time cost and run time cost. Note: the run time cost is only relevant when the revert condition is met. In short, replace revert strings by custom errors.
IAlgebraFactory.sol AlgebraPool.sol IAlgebraPoolActions.sol Sqrt.sol AlgebraFactory.sol DataStorage.sol IAlgebraPoolState.sol IAlgebraPoolImmutables.sol AdaptiveFee.sol IAlgebraPool.sol PoolState.sol DataStorageOperator.sol TransferHelper.sol PoolImmutables.sol IAlgebraPoolDerivedState.sol IERC20Minimal.sol TickTable.sol Constants.sol TickManager.sol IAlgebraFlashCallback.sol IAlgebraPoolPermissionedActions.sol TokenDeltaMath.sol IAlgebraPoolDeployer.sol AlgebraPoolDeployer.sol IAlgebraVirtualPool.sol IAlgebraSwapCallback.sol IDataStorageOperator.sol TickMath.sol LowGasSafeMath.sol PriceMovementMath.sol FullMath.sol IAlgebraPoolEvents.sol SafeCast.sol IAlgebraMintCallback.sol LiquidityMath.sol
We recommend not to cache msg.sender since calling it is 2 gas while reading a variable is more.
https://github.com/code-423n4/2022-09-quickswap/tree/main/src/core/contracts/AlgebraFactory.sol#L52 https://github.com/code-423n4/2022-09-quickswap/tree/main/src/core/contracts/DataStorageOperator.sol#L33 https://github.com/code-423n4/2022-09-quickswap/tree/main/src/core/contracts/AlgebraPoolDeployer.sol#L33