Platform: Code4rena
Start Date: 16/12/2022
Pot Size: $60,500 USDC
Total HM: 12
Participants: 58
Period: 5 days
Judge: Trust
Total Solo HM: 4
Id: 196
League: ETH
Rank: 34/58
Findings: 1
Award: $43.54
🌟 Selected for report: 0
🚀 Solo Findings: 0
🌟 Selected for report: yixxas
Also found by: 0x52, 0xAgro, 0xSmartContract, 0xhacksmithh, Aymen0909, Bnke0x0, Bobface, Breeje, Diana, Franfran, HE1M, HollaDieWaldfee, IllIllI, Jeiwan, RaymondFam, Rolezn, SaharDevep, Secureverse, SmartSek, ak1, bin2chen, brgltd, chrisdior4, gz627, imare, ladboy233, lukris02, oyc_109, rvierdiiev, shark, tnevler, unforgiven, wait
43.5439 USDC - $43.54
| L-R | Issue | Instances |
|---|---|---|
| [L‑01] | Missing zero address check in the constructor | 1 |
| [L‑02] | Unsafe ERC20 operations | 3 |
| [L‑03] | decimals() not part of ERC20 standard | 1 |
| [L‑04] | Signature malleability for ecrecover | 1 |
Total: 6 instances over 4 issues
| N-C | Issue | Instances |
|---|---|---|
| [N‑01] | 10 ** 18 can be 1e18 for readability | 2 |
| [N‑02] | Constants should be defined rather than using magic numbers | 2 |
| [N‑03] | Immutable must be changed to constant | 5 |
| [N‑04] | Typos | 1 |
| [N‑05] | Change name of a parameter | 1 |
| [N‑06] | Do not use floating pragma, use a concrete version instead | 5 |
| [N‑07] | Lack of event emitting | 1 |
Total: 17 instances over 7 issues
File: PaprController.sol
The variable oracleSigner of type address in the constructor is initialized in ReservoirOracleUnderwriter.sol where zero address check is missing.
constructor( string memory name, string memory symbol, uint256 _maxLTV, uint256 indexMarkRatioMax, uint256 indexMarkRatioMin, ERC20 underlying, address oracleSigner
Line of code:
Consider adding a zero address checks.
Some tokens do not comply with the standard. The transfer() function may have no return value, such as USDT. In such cases, the payout functions will revert and users fund may be locked.
Although the SafeTransferLib is imported in PaprController.sol , the transfer() function should be converted to safeTransfer()
underlying.transfer(proceedsTo, amountOut - fee);
underlying.transfer(params.swapFeeTo, amountIn * params.swapFeeBips / BIPS_ONE);
collateralArr[i].addr.transferFrom(msg.sender, address(this), collateralArr[i].id);
Lines of code:
decimals() is not part of the official ERC20 standard and might fall for tokens that do not implement it. While in practice it is very unlikely, as usually most of the tokens implement it, this should still be considered as a potential issue.
uint256 underlyingONE = 10 ** underlying.decimals();
Line of code:
ecrecoverFile: ReservoirOracleUnderwriter.sol
The implementation of a cryptographic signature system in Ethereum contracts often assumes that the signature is unique, but signatures can be altered without the possession of the private key and still be valid. The EVM specification defines several so-called ‘precompiled’ contracts one of them being ecrecover which executes the elliptic curve public key recovery. A malicious user can slightly modify the three values v, r and s to create other valid signatures. A system that performs signature verification on contract level might be susceptible to attacks if the signature is part of the signed message hash. Valid signatures could be created by a malicious user to replay previously signed messages.
address signerAddress = ecrecover(
Line of code:
Use OpenZeppelin ECDSA library.
File: PaprController.sol
initSqrtRatio = UniswapHelpers.oneToOneSqrtRatio(underlyingONE, 10 ** 18);
initSqrtRatio = UniswapHelpers.oneToOneSqrtRatio(10 ** 18, underlyingONE);
Lines of code:
File: PaprController.sol
if (newDebt >= 1 << 200) revert IPaprController.DebtAmountExceedsUint200();
address _pool = UniswapHelpers.deployAndInitPool(address(underlying), address(papr), 10000, initSqrtRatio);
Lines of code:
File: PaprController.sol
Immutable must be changed to constant for some variables because they are not initialized in the constructor but before that
uint256 public immutable override liquidationAuctionMinSpacing = 2 days; uint256 public immutable override perPeriodAuctionDecayWAD = 0.7e18; uint256 public immutable override auctionDecayPeriod = 1 days; uint256 public immutable override auctionStartPriceMultiplier = 3; uint256 public immutable override liquidationPenaltyBips = 1000;
Lines of code:
File: PaprController.sol
/// @return selector indicating `succesful` receiving of the NFT
Change it to successful
Line of code:
totalCollateraValue parameterFile: PaprController.sol and IPaprController.sol
The current name of the parameter is totalCollateraValue , it will be more professional to change it with the correct spelling - totalCollateralValue
function maxDebt(uint256 totalCollateraValue) external view override returns (uint256) {
Line of code:
Currently the smart contracts are using a floating pragma, change it to concrete version
Contracts do not emit relevant event on setter function. Consider emitting events after sensitive changes take place, to facilitate tracking and notify off-chain clients following the contract’s activity.
File: PaprController.sol
function setLiquidationsLocked(bool locked) external override onlyOwner { liquidationsLocked = locked; }
Lines of code:
#0 - c4-judge
2022-12-25T13:02:53Z
trust1995 marked the issue as grade-b