Platform: Code4rena
Start Date: 14/09/2022
Pot Size: $50,000 USDC
Total HM: 25
Participants: 110
Period: 5 days
Judge: hickuphh3
Total Solo HM: 9
Id: 162
League: ETH
Rank: 40/110
Findings: 3
Award: $142.80
🌟 Selected for report: 0
🚀 Solo Findings: 0
🌟 Selected for report: cccz
Also found by: Respx, Saintcode_, csanuragjain, fatherOfBlocks, pashov, unforgiven
90.0028 USDC - $90.00
https://github.com/code-423n4/2022-09-y2k-finance/blob/2175c044af98509261e4147edeb48e1036773771/src/rewards/StakingRewards.sol#L213-L223 https://github.com/code-423n4/2022-09-y2k-finance/blob/2175c044af98509261e4147edeb48e1036773771/src/rewards/StakingRewards.sol#L132-L139
When users call exit() or getReward() to get the rewards of their staking assets, if owner has called recoverERC20 to get all the reward tokens available in the contract, user calls will always revert until the next epoch.
Users cannot withdraw their generated rewards amount.
-Owner calls recoverERC20 with (rewardsToken address) and (rewardsToken balance of StakingRewards) as parameters
-User tries to call getReward() but as the owner has already emptied the existent rewards this call reverts and user can't withdraw his generated rewards.
https://github.com/code-423n4/2022-09-y2k-finance/blob/2175c044af98509261e4147edeb48e1036773771/src/rewards/StakingRewards.sol#L213-L223 https://github.com/code-423n4/2022-09-y2k-finance/blob/2175c044af98509261e4147edeb48e1036773771/src/rewards/StakingRewards.sol#L132-L139
Consider limiting the owner’s abilities. -Add require statement in StakingRewards line 216 so that owner cannot withdraw users rewards:
require( tokenAddress != address(rewardsToken), "Cannot withdraw the rewards token" );
#0 - HickupHH3
2022-11-03T13:45:24Z
dup #49
🌟 Selected for report: Respx
Also found by: 0x1f8b, 0xDecorativePineapple, 0xNazgul, 0xPanas, 0xSmartContract, 0xc0ffEE, 0xmuxyz, Aymen0909, Bahurum, Bnke0x0, CodingNameKiki, Deivitto, Jeiwan, Lambda, Picodes, PwnPatrol, R2, RaymondFam, Rolezn, Ruhum, Saintcode_, SooYa, Tointer, V_B, ajtra, ak1, async, auditor0517, brgltd, c3phas, carrotsmuggler, cccz, csanuragjain, datapunk, djxploit, durianSausage, eierina, erictee, gogo, imare, joestakey, jonatascm, kv, ladboy233, leosathya, lukris02, oyc_109, pashov, pauliax, rbserver, robee, rokinot, rvierdiiev, scaraven, simon135, unforgiven, wagmi, zzzitron
36.6223 USDC - $36.62
DEPOSITSince SemiFungibleVault.sol is intended to be an EIP, adding further anti-reentrancy security checks is a must, so that users who inherit the contract and don't override deposit can get all the security checks
What return (amount * epochFee[_epoch]) / 1000; does is multiply by fee then divide by 1000
What says in the example comment in Vault.sol line 256: // 0.5% = multiply by 1000 then divide by 5 is wrong, the correct sentence would be // 0.5% = multiply by 5then divide by 1000
🌟 Selected for report: pfapostol
Also found by: 0x040, 0x1f8b, 0x4non, 0xNazgul, 0xSmartContract, 0xc0ffEE, 0xkatana, Aymen0909, Bnke0x0, Deivitto, Diana, JAGADESH, KIntern_NA, Lambda, MiloTruck, R2, RaymondFam, Respx, ReyAdmirado, Rohan16, RoiEvenHaim, Rolezn, Ruhum, Saintcode_, Samatak, Sm4rty, SnowMan, Tomio, Tomo, WilliamAmbrozic, _Adam, __141345__, ajtra, ak1, async, c3phas, ch0bu, cryptostellar5, d3e4, delfin454000, dharma09, djxploit, durianSausage, eierina, erictee, fatherOfBlocks, gianganhnguyen, gogo, ignacio, imare, jag, jonatascm, leosathya, lukris02, malinariy, oyc_109, pashov, pauliax, peanuts, peiw, prasantgupta52, robee, rokinot, rotcivegaf, rvierdiiev, seyni, simon135, slowmoses, sryysryy, tnevler, zishansami
16.1756 USDC - $16.18
When a function with a memory array is called externally, the abi.decode() step has to use a for-loop to copy each index of the calldata to the memory index. Each iteration of this for-loop costs at least 60 gas (i.e. 60 * <mem_array>.length). Using calldata directly, obliviates the need for such a loop in the contract code and runtime execution.
When arguments are read-only on external functions, the data location should be calldata
1 Instance: -VaultFactory.sol line 185,
When fetching data from a storage location, assigning the data to a memory variable causes all fields of the struct/array to be read from storage, which incurs a Gcoldsload (2100 gas) for each field of the struct/array. If the fields are read from the new memory variable, they incur an additional MLOAD rather than a cheap stack read. Instead of declearing the variable with the memory keyword, declaring the variable with the storage keyword and caching any fields that need to be re-read in stack variables, will be much cheaper, only incuring the Gcoldsload for the fields actually read. The only time it makes sense to read the whole struct/array into a memory variable, is if the full struct/array is being returned by the function, is being passed to a function that requires memory, or if the array/struct is being read from another memory array/struct
3 Instances: -VaultFactory.sol lines 313, 331, 352
1 Instance: -VaultFactory.sol line 195
++I INSTEAD OF I++ (OR USE ASSEMBLY WHEN APPLICABLE)Use ++i instead of i++. This is especially useful in for loops but this optimization can be used anywhere in your code.
1 instance: -Vault.sol line 443
If a variable is not set/initialized, it is assumed to have the default value (0 for uint, false for bool, address(0) for address…). Explicitly initializing it with its default value is an anti-pattern and wastes gas.
As an example: for (uint256 i = 0; i < numIterations; ++i) { should be replaced with for (uint256 i; i < numIterations; ++i) {
2 Instances: -Vault.sol line 443 -StakingRewards.sol line 36
>= COSTS LESS GAS THAN >The compiler uses opcodes GT and ISZERO for solidity code that uses >, but only requires LT for >=, which saves 3 gas
6 Instances: -Vault.sol lines 187, 311 -PegOracle.sol lines 98, 121 -StakingRewards lines 119, 134,
++I/I++ SHOULD BE UNCHECKED{++I}/UNCHECKED{I++} WHEN IT IS NOT POSSIBLE FOR THEM TO OVERFLOW, AS IS THE CASE WHEN USED IN FOR- AND WHILE-LOOPSThe unchecked keyword is new in solidity version 0.8.0, so this only applies to that version or higher, which these instances are. This saves 30-40 gas per loop
for (uint256 i = 0; i < orders.length; /** NOTE: Removed i++ **/ ) { // Do the thing // Unchecked pre-increment is cheapest unchecked { ++i; } }
1 instance: -Vault.sol line 443
REQUIRE()/REVERT() STRINGS LONGER THAN 32 BYTES COST EXTRA GASEach extra memory word of bytes past the original 32 incurs an MSTORE which costs 3 gas
5 Instances: -SemiFungibleVault.sol line 116 -PegOracle.sol lines 23, 24, 25 -StakingRewards.sol lines 219, 228
Version 0.8.0 introduces internal overflow checks, so using SafeMath is redundant and adds overhead
-StakingRewards.sol line 29, therefore .add(), .sub(), mul() and .div() functions should be changed to normal solidity operators, lines: 97, 98, 164, 178, 194, 208, 120, 121, 166, 176, 192, 169, 177, 190, 194, 203, 152, 167, 168, 176, 193
Custom errors are available from solidity version 0.8.4. Custom errors save ~50 gas each time they’re hitby avoiding having to allocate and store the revert string. Not defining the strings also save deployment gas
19 Instances: -SemiFungible.sol lines 91, 116 -Vault.sol lines 165, 187 -PegOracle.sol lines 23, 24, 25, 28, 98, 99, 103, 121, 122, 126 -StakingRewards.sol lines 96, 119, 202, 217, 226