Platform: Code4rena
Start Date: 20/01/2023
Pot Size: $90,500 USDC
Total HM: 10
Participants: 59
Period: 7 days
Judge: Picodes
Total Solo HM: 4
Id: 206
League: ETH
Rank: 7/59
Findings: 3
Award: $3,809.64
🌟 Selected for report: 1
🚀 Solo Findings: 0
1601.3089 USDC - $1,601.31
Judge has assessed an item in Issue #250 as 2 risk. The relevant finding follows:
In first place, _currentIndex (which is of type mapping(address => uint256)) is incremented before using it in line 117. This will cause the implementation to miss the zero index, and start from the second place (index 1). The index is read again in line 118 and stored in the enumeration in line 119.
#0 - c4-judge
2023-02-12T21:56:45Z
Picodes marked the issue as duplicate of #272
#1 - c4-judge
2023-02-12T22:28:17Z
Picodes marked the issue as satisfactory
🌟 Selected for report: adriro
Also found by: chaduke, eierina, hansfriese, mookimgo
607.0242 USDC - $607.02
The ERC1155Enumerable base contract used in the TimeswapV2Token and TimeswapV2LiquidityToken tokens provides a functionality to enumerate all token ids that have been minted in the contract.
The logic to remove the token from the enumeration if the last token is burned is implemented in the _afterTokenTransfer hook:
function _afterTokenTransfer(address, address from, address to, uint256[] memory ids, uint256[] memory amounts, bytes memory) internal virtual override { for (uint256 i; i < ids.length; ) { if (amounts[i] != 0) _removeTokenEnumeration(from, to, ids[i], amounts[i]); unchecked { ++i; } } } /// @dev Remove token enumeration list if necessary. function _removeTokenEnumeration(address from, address to, uint256 id, uint256 amount) internal { if (to == address(0)) { if (_idTotalSupply[id] == 0 && _additionalConditionRemoveTokenFromAllTokensEnumeration(id)) _removeTokenFromAllTokensEnumeration(id); _idTotalSupply[id] -= amount; } if (from != address(0) && from != to) { if (balanceOf(from, id) == 0 && _additionalConditionRemoveTokenFromOwnerEnumeration(from, id)) _removeTokenFromOwnerEnumeration(from, id); } }
The _removeTokenEnumeration condition to check if the supply is 0 happens before the function decreases the burned amount. This will _removeTokenFromAllTokensEnumeration from being called when the last token(s) is(are) burned.
The token isn't removed from the enumeration since _removeTokenFromAllTokensEnumeration will never be called. This will cause the enumeration to always contain a minted token even though it is burned afterwards. The function totalSupply and tokenByIndex will report wrong values.
This will also cause the enumeration to contain duplicate values or multiple copies of the same token. If the token is minted again after all tokens were previously burned, the token will be re added to the enumeration.
The following test demonstrates the issue. Alice is minted a token and that token is then burned, the token is still present in the enumeration. The token is minted again, causing the enumeration to contain the token by duplicate.
// SPDX-License-Identifier: UNLICENSED pragma solidity =0.8.8; import "forge-std/Test.sol"; import "../src/base/ERC1155Enumerable.sol"; contract TestERC1155Enumerable is ERC1155Enumerable { constructor() ERC1155("") { } function mint(address to, uint256 id, uint256 amount) external { _mint(to, id, amount, ""); } function burn(address from, uint256 id, uint256 amount) external { _burn(from, id, amount); } } contract AuditTest is Test { function test_ERC1155Enumerable_BadRemoveFromEnumeration() public { TestERC1155Enumerable token = new TestERC1155Enumerable(); address alice = makeAddr("alice"); uint256 tokenId = 0; uint256 amount = 1; token.mint(alice, tokenId, amount); // tokenByIndex and totalSupply are ok assertEq(token.tokenByIndex(0), tokenId); assertEq(token.totalSupply(), 1); // now we burn the token token.burn(alice, tokenId, amount); // tokenByIndex and totalSupply still report previous values // tokenByIndex should throw index out of bounds, and supply should return 0 assertEq(token.tokenByIndex(0), tokenId); assertEq(token.totalSupply(), 1); // Now we mint it again, this will re-add the token to the enumeration, duplicating it token.mint(alice, tokenId, amount); assertEq(token.totalSupply(), 2); assertEq(token.tokenByIndex(0), tokenId); assertEq(token.tokenByIndex(1), tokenId); } }
Decrease the amount before checking if the supply is 0.
function _removeTokenEnumeration(address from, address to, uint256 id, uint256 amount) internal { if (to == address(0)) { _idTotalSupply[id] -= amount; if (_idTotalSupply[id] == 0 && _additionalConditionRemoveTokenFromAllTokensEnumeration(id)) _removeTokenFromAllTokensEnumeration(id); } if (from != address(0) && from != to) { if (balanceOf(from, id) == 0 && _additionalConditionRemoveTokenFromOwnerEnumeration(from, id)) _removeTokenFromOwnerEnumeration(from, id); } }
#0 - c4-judge
2023-02-02T22:22:23Z
Picodes marked the issue as duplicate of #228
#1 - c4-judge
2023-02-12T21:50:28Z
Picodes marked the issue as selected for report
#2 - c4-judge
2023-02-12T21:54:57Z
Picodes changed the severity to QA (Quality Assurance)
#3 - c4-judge
2023-02-12T22:31:47Z
This previously downgraded issue has been upgraded by Picodes
#4 - c4-judge
2023-02-12T22:35:06Z
Picodes marked the issue as satisfactory
#5 - vhawk19
2023-02-17T11:24:34Z
Resolved in PR
1601.3089 USDC - $1,601.31
Judge has assessed an item in Issue #250 as 2 risk. The relevant finding follows:
Then, the logic presumably tries to keep a lookup table between token id -> index using the _ownedTokensIndex variable which is of type mapping(uint256 => uint256) . This is also wrong, since ERC1155 tokens can have multiple amounts and multiple owners, as opposed to an ERC721.
If the token is transferred or burned, the logic to remove it from the owner enumeration happens in the _removeTokenFromOwnerEnumeration function.
#0 - c4-judge
2023-02-12T21:44:50Z
Picodes marked the issue as duplicate of #168
#1 - c4-judge
2023-02-12T22:29:05Z
Picodes marked the issue as satisfactory