Platform: Code4rena
Start Date: 26/05/2023
Pot Size: $100,000 USDC
Total HM: 0
Participants: 33
Period: 14 days
Judge: leastwood
Id: 241
League: ETH
Rank: 1/33
Findings: 1
Award: $10,437.90
🌟 Selected for report: 1
🚀 Solo Findings: 0
🌟 Selected for report: rbserver
Also found by: 0x73696d616f, 0xTheC0der, 0xdeadbeef, 0xhacksmithh, Bauchibred, GalloDaSballo, KKat7531, Madalad, MohammedRizwan, Rolezn, SAAJ, SanketKogekar, Sathish9098, VictoryGod, brgltd, btk, codeslide, descharre, hunter_w3b, jauvany, kaveyjoe, ladboy233, nadin, niser93, shealtielanz, souilos, trysam2003, yongskiws
10437.8985 USDC - $10,437.90
| Issue | |
|---|---|
| [01] | OptimismPortal.receive FUNCTION SHOULD ONLY BE CALLABLE BY EOAS |
| [02] | CALLING OptimismPortal.depositTransaction FUNCTION DOES NOT REVERT WHEN _isCreation IS FALSE AND _to == address(0) IS TRUE |
| [03] | L2CrossDomainMessenger._sendMessage, L2StandardBridge._initiateWithdrawal, AND L2ToL1MessagePasser.initiateWithdrawal FUNCTIONS ALLOW RESPECTIVE _to OR _target TO BE address(0) |
| [04] | L2ToL1MessagePasser.burn FUNCTION CAN STOP WORKING WHEN SELFDESTRUCT BECOMES DEACTIVATED |
| [05] | ANYONE CAN CALL L2ToL1MessagePasser.burn FUNCTION TO DEFLATE AMOUNT OF ETH ON L2 |
| [06] | CALLING L2ToL1MessagePasser.burn FUNCTION WHEN address(this).balance IS 0 FOR MANY TIMES CAN CAUSE EVENT LOG POISONING |
| [07] | CALLING OptimismPortal.finalizeWithdrawalTransaction FUNCTION DOES NOT REVERT WHEN LOW LEVEL CALL TO _tx.target FAILS FOR SOME REASONS OTHER THAN HAVING INSUFFICIENT GAS IN CURRENT CONTEXT |
| [08] | OptimismMintableERC20Factory.createOptimismMintableERC20 FUNCTION CAN BE CALLED FOR MULTIPLE TIMES FOR SAME _remoteToken-_name-_symbol COMBINATION |
| [09] | SystemConfig._setResourceConfig FUNCTION SHOULD REQUIRE _config.minimumBaseFee < _config.maximumBaseFee |
| [10] | CALLING L2OutputOracle.proposeL2Output FUNCTION AT PRESENT REVERTS |
| [11] | MISSING address(0) CHECKS FOR address CONSTRUCTOR INPUTS |
| [12] | VULNERABILITIES IN VERSION 4.7.3 OF @openzeppelin/contracts AND @openzeppelin/contracts-upgradeable |
| [13] | MORE UPDATED VERSION OF SOLIDITY CAN BE USED |
| [14] | require(_gasLimit >= minimumGasLimit(), "SystemConfig: gas limit too low") CAN BE REFACTORED INTO A MODIFIER TO BE USED IN CORRESPONDING FUNCTIONS |
| [15] | CONSTANTS CAN BE USED INSTEAD OF MAGIC NUMBERS |
| [16] | HARDCODED STRING THAT IS REPEATEDLY USED CAN BE REPLACED WITH A CONSTANT |
| [17] | revert CAN BE CALLED INSTEAD OF assert TO PROVIDE CLEARER REASON FOR REVERSION |
| [18] | PUBLIC FUNCTIONS THAT ARE NOT CALLED BY OTHER FUNCTIONS IN SAME CONTRACT CAN BE EXTERNAL |
| [19] | UNDERSCORE CAN BE ADDED FOR 21000 IN OptimismPortal.minimumGasLimit FUNCTION |
| [20] | WORD TYPING TYPO |
| [21] | BOOLEAN VARIABLE COMPARISONS ARE NOT HANDLED CONSISTENTLY |
| [22] | revert WITH CUSTOM ERRORS CAN BE EXECUTED INSTEAD OF EXECUTING require OR revert WITH REASON STRINGS |
| [23] | ORDERS OF FUNCTIONS DO NOT FOLLOW OFFICIAL STYLE GUIDE |
| [24] | INCOMPLETE NATSPEC COMMENTS |
OptimismPortal.receive FUNCTION SHOULD ONLY BE CALLABLE BY EOASThe following OptimismPortal.receive function should only be callable by EOAs. If it is called by a contract, the deposited funds would be lost. To prevent this from happening, the OptimismPortal.receive function can use a modifier that is similar to the L1StandardBridge.onlyEOA modifier below, which is used in the L1StandardBridge.receive function.
/** * @notice Accepts value so that users can send ETH directly to this contract and have the * funds be deposited to their address on L2. This is intended as a convenience * function for EOAs. Contracts should call the depositTransaction() function directly * otherwise any deposited funds will be lost due to address aliasing. */ // solhint-disable-next-line ordering receive() external payable { depositTransaction(msg.sender, msg.value, RECEIVE_DEFAULT_GAS_LIMIT, false, bytes("")); }
modifier onlyEOA() { // Used to stop deposits from contracts (avoid accidentally lost tokens) require(!Address.isContract(msg.sender), "Account not EOA"); _; }
receive() external payable onlyEOA { _initiateETHDeposit(msg.sender, msg.sender, 200_000, bytes("")); }
OptimismPortal.depositTransaction FUNCTION DOES NOT REVERT WHEN _isCreation IS FALSE AND _to == address(0) IS TRUEWhen _isCreation is false, _to can be mistakenly inputted as address(0) when calling the following OptimismPortal.depositTransaction function. When this occurs, the deposited funds would be lost. To avoid this, please consider updating the OptimismPortal.depositTransaction function to revert when _isCreation is false and _to == address(0) is true.
function depositTransaction( address _to, uint256 _value, uint64 _gasLimit, bool _isCreation, bytes memory _data ) public payable metered(_gasLimit) { // Just to be safe, make sure that people specify address(0) as the target when doing // contract creations. if (_isCreation) { require( _to == address(0), "OptimismPortal: must send to address(0) when creating a contract" ); } ... }
L2CrossDomainMessenger._sendMessage, L2StandardBridge._initiateWithdrawal, AND L2ToL1MessagePasser.initiateWithdrawal FUNCTIONS ALLOW RESPECTIVE _to OR _target TO BE address(0)Calling the following L2CrossDomainMessenger._sendMessage, L2StandardBridge._initiateWithdrawal, and L2ToL1MessagePasser.initiateWithdrawal functions with the respective _to or _target being address(0) can cause funds to be sent to address(0) on L1. To prevent users from losing their funds to be withdrawn on L1, please consider updating these functions to revert when the respective _to or _target is address(0).
function _sendMessage( address _to, uint64 _gasLimit, uint256 _value, bytes memory _data ) internal override { L2ToL1MessagePasser(payable(Predeploys.L2_TO_L1_MESSAGE_PASSER)).initiateWithdrawal{ value: _value }(_to, _gasLimit, _data); }
function _initiateWithdrawal( address _l2Token, address _from, address _to, uint256 _amount, uint32 _minGasLimit, bytes memory _extraData ) internal { if (_l2Token == Predeploys.LEGACY_ERC20_ETH) { _initiateBridgeETH(_from, _to, _amount, _minGasLimit, _extraData); } else { address l1Token = OptimismMintableERC20(_l2Token).l1Token(); _initiateBridgeERC20(_l2Token, l1Token, _from, _to, _amount, _minGasLimit, _extraData); } }
function initiateWithdrawal( address _target, uint256 _gasLimit, bytes memory _data ) public payable { bytes32 withdrawalHash = Hashing.hashWithdrawal( Types.WithdrawalTransaction({ nonce: messageNonce(), sender: msg.sender, target: _target, value: msg.value, gasLimit: _gasLimit, data: _data }) ); sentMessages[withdrawalHash] = true; emit MessagePassed( messageNonce(), msg.sender, _target, msg.value, _gasLimit, _data, withdrawalHash ); unchecked { ++msgNonce; } }
L2ToL1MessagePasser.burn FUNCTION CAN STOP WORKING WHEN SELFDESTRUCT BECOMES DEACTIVATEDThe following L2ToL1MessagePasser.burn function executes Burn.eth(balance), which eventually executes selfdestruct(payable(address(this))), for burning all ETH held by the L2ToL1MessagePasser contract. However, when EIP-4758 becomes effective to deactivate SELFDESTRUCT in the future, this L2ToL1MessagePasser.burn function will no longer work, and such functionality for burning all ETH held by the L2ToL1MessagePasser contract will be unavailable in which the inflation of the amount of ETH on L2 when ETH is withdrawn cannot be prevented. To be more future-proofed, please consider updating the L2ToL1MessagePasser.burn function to send the ETH amount of address(this).balance to a designated address, such as address(0), for burning all ETH held by the L2ToL1MessagePasser contract.
function burn() external { uint256 balance = address(this).balance; Burn.eth(balance); emit WithdrawerBalanceBurnt(balance); }
function eth(uint256 _amount) internal { new Burner{ value: _amount }(); }
contract Burner { constructor() payable { selfdestruct(payable(address(this))); } }
L2ToL1MessagePasser.burn FUNCTION TO DEFLATE AMOUNT OF ETH ON L2Anyone can call the following L2ToL1MessagePasser.burn function to burn all ETH held by the L2ToL1MessagePasser contract. Yet, when ETH is not withdrawn, this function can still be called, which can deflate the amount of ETH on L2. To avoid this from occurring, please consider updating the L2ToL1MessagePasser.burn function to be only callable by the trusted admin.
function burn() external { uint256 balance = address(this).balance; Burn.eth(balance); emit WithdrawerBalanceBurnt(balance); }
L2ToL1MessagePasser.burn FUNCTION WHEN address(this).balance IS 0 FOR MANY TIMES CAN CAUSE EVENT LOG POISONINGAfter the following L2ToL1MessagePasser.burn function is called to remove all ETH held by the L2ToL1MessagePasser contract from the state, this function can still be called. Because address(this).balance has become 0 already, calling this function for many times in this case would emit meaningless WithdrawerBalanceBurnt events, which spam the monitor system that consumes such event. To prevent such event log poisoning, please consider updating the L2ToL1MessagePasser.burn function to revert when address(this).balance is 0.
function burn() external { uint256 balance = address(this).balance; Burn.eth(balance); emit WithdrawerBalanceBurnt(balance); }
OptimismPortal.finalizeWithdrawalTransaction FUNCTION DOES NOT REVERT WHEN LOW LEVEL CALL TO _tx.target FAILS FOR SOME REASONS OTHER THAN HAVING INSUFFICIENT GAS IN CURRENT CONTEXTCalling the following OptimismPortal.finalizeWithdrawalTransaction function can result in a false success when the low level call to _tx.target fails for some reasons other than having insufficient gas in the current context. In this case, since tx.origin == Constants.ESTIMATION_ADDRESS is false, calling the OptimismPortal.finalizeWithdrawalTransaction function would not revert, the withdrawal transaction is considered as finalized in which finalizedWithdrawals[withdrawalHash] would be set to true even though the low level call to _tx.target fails, and the associated funds to be withdrawn remain in the OptimismPortal contract. Because finalizedWithdrawals[withdrawalHash] is already true, calling the OptimismPortal.finalizeWithdrawalTransaction function for the same withdrawalHash again would revert due to require(finalizedWithdrawals[withdrawalHash] == false, "OptimismPortal: withdrawal has already been finalized"). To allow the reattempt for withdrawing the funds for the same withdrawalHash in this situation, please consider updating the OptimismPortal.finalizeWithdrawalTransaction function to revert when success == false is true without requiring tx.origin == Constants.ESTIMATION_ADDRESS to also be true.
function finalizeWithdrawalTransaction(Types.WithdrawalTransaction memory _tx) external whenNotPaused { ... // Check that this withdrawal has not already been finalized, this is replay protection. require( finalizedWithdrawals[withdrawalHash] == false, "OptimismPortal: withdrawal has already been finalized" ); // Mark the withdrawal as finalized so it can't be replayed. finalizedWithdrawals[withdrawalHash] = true; // Set the l2Sender so contracts know who triggered this withdrawal on L2. l2Sender = _tx.sender; // Trigger the call to the target contract. We use a custom low level method // SafeCall.callWithMinGas to ensure two key properties // 1. Target contracts cannot force this call to run out of gas by returning a very large // amount of data (and this is OK because we don't care about the returndata here). // 2. The amount of gas provided to the execution context of the target is at least the // gas limit specified by the user. If there is not enough gas in the current context // to accomplish this, `callWithMinGas` will revert. bool success = SafeCall.callWithMinGas(_tx.target, _tx.gasLimit, _tx.value, _tx.data); // Reset the l2Sender back to the default value. l2Sender = Constants.DEFAULT_L2_SENDER; // All withdrawals are immediately finalized. Replayability can // be achieved through contracts built on top of this contract emit WithdrawalFinalized(withdrawalHash, success); // Reverting here is useful for determining the exact gas cost to successfully execute the // sub call to the target contract if the minimum gas limit specified by the user would not // be sufficient to execute the sub call. if (success == false && tx.origin == Constants.ESTIMATION_ADDRESS) { revert("OptimismPortal: withdrawal failed"); } }
OptimismMintableERC20Factory.createOptimismMintableERC20 FUNCTION CAN BE CALLED FOR MULTIPLE TIMES FOR SAME _remoteToken-_name-_symbol COMBINATIONThe following OptimismMintableERC20Factory.createOptimismMintableERC20 function can be called for multiple times for the same _remoteToken-_name-_symbol combination. This means that multiple instances of the OptimismMintableERC20 contract can be created for the same _remoteToken-_name-_symbol combination, which can then be used to trick and phishing attack users. To be more secured, please consider updating the OptimismMintableERC20Factory.createOptimismMintableERC20 function to revert when an instance of the OptimismMintableERC20 contract has already been created for the same _remoteToken-_name-_symbol combination.
function createOptimismMintableERC20( address _remoteToken, string memory _name, string memory _symbol ) public returns (address) { require( _remoteToken != address(0), "OptimismMintableERC20Factory: must provide remote token address" ); address localToken = address( new OptimismMintableERC20(BRIDGE, _remoteToken, _name, _symbol) ); // Emit the old event too for legacy support. emit StandardL2TokenCreated(_remoteToken, localToken); // Emit the updated event. The arguments here differ from the legacy event, but // are consistent with the ordering used in StandardBridge events. emit OptimismMintableERC20Created(localToken, _remoteToken, msg.sender); return localToken; }
SystemConfig._setResourceConfig FUNCTION SHOULD REQUIRE _config.minimumBaseFee < _config.maximumBaseFeeThe reason string of the require statement below in the following SystemConfig._setResourceConfig function specifies SystemConfig: min base fee must be less than max base. However, the condition of such require statement is _config.minimumBaseFee <= _config.maximumBaseFee, which would be true if _config.minimumBaseFee and _config.maximumBaseFee are equal. This means that the SystemConfig._setResourceConfig function allows the minimum base fee to equal the maximum base fee even though the specification requires the minimum base fee to be less than the maximum base fee. To match the intended specification, please consider updating _config.minimumBaseFee <= _config.maximumBaseFee to _config.minimumBaseFee < _config.maximumBaseFee in such require statement in the SystemConfig._setResourceConfig function.
function _setResourceConfig(ResourceMetering.ResourceConfig memory _config) internal { // Min base fee must be less than or equal to max base fee. require( _config.minimumBaseFee <= _config.maximumBaseFee, "SystemConfig: min base fee must be less than max base" ); ... }
L2OutputOracle.proposeL2Output FUNCTION AT PRESENT REVERTSThe following L2OutputOracle.proposeL2Output function executes require(computeL2Timestamp(_l2BlockNumber) < block.timestamp, "L2OutputOracle: cannot propose L2 output in the future"), which does not allow proposing L2 output in the future. Yet, when computeL2Timestamp(_l2BlockNumber) == block.timestamp is true, the time is the present, not the future, but executing such require statement reverts even though the require statement's reason string is L2OutputOracle: cannot propose L2 output in the future. To allow proposing L2 output at present, please consider updating such require statement to require(computeL2Timestamp(_l2BlockNumber) <= block.timestamp, "L2OutputOracle: cannot propose L2 output in the future").
function proposeL2Output( bytes32 _outputRoot, uint256 _l2BlockNumber, bytes32 _l1BlockHash, uint256 _l1BlockNumber ) external payable { ... require( computeL2Timestamp(_l2BlockNumber) < block.timestamp, "L2OutputOracle: cannot propose L2 output in the future" ); ... }
address(0) CHECKS FOR address CONSTRUCTOR INPUTSTo prevent unintended behaviors, critical constructor inputs that are address should be checked against address(0). address(0) checks are missing for the address inputs of the following constructors. Please consider checking them.
constructor( ... address _proposer, address _challenger, ... ) Semver(1, 3, 0) { ... PROPOSER = _proposer; CHALLENGER = _challenger; ... }
constructor( ... address _guardian, ... ) Semver(1, 6, 0) { ... GUARDIAN = _guardian; ... }
constructor( address _owner, ... address _unsafeBlockSigner, ... ) Semver(1, 3, 0) { initialize({ _owner: _owner, ... _unsafeBlockSigner: _unsafeBlockSigner, ... }); }
constructor(address _bridge) Semver(1, 1, 0) { BRIDGE = _bridge; }
constructor(address _owner) Ownable() { _transferOwnership(_owner); }
@openzeppelin/contracts AND @openzeppelin/contracts-upgradeableAs shown in the following code in package.json, version 4.7.3 of @openzeppelin/contracts and @openzeppelin/contracts-upgradeable are used. As described in https://security.snyk.io/package/npm/@openzeppelin%2Fcontracts/4.7.3 and https://security.snyk.io/package/npm/@openzeppelin%2Fcontracts-upgradeable/4.7.3, this version of @openzeppelin/contracts and @openzeppelin/contracts-upgradeable have the Missing Authorization, DOS, and Improper Input Validation vulnerabilities. To reduce the potential attack surface and be more future-proofed, please consider upgrading these packages to at least version 4.9.1.
"dependencies": { ... "@openzeppelin/contracts": "4.7.3", "@openzeppelin/contracts-upgradeable": "4.7.3", ... },
Using the more updated version of Solidity can add new features and enhance security. As described in https://github.com/ethereum/solidity/releases, Version 0.8.20 is the latest version of Solidity, which includes support for Shanghai. If Optimism does not support PUSH0 at this moment, Version 0.8.19, which "contains a fix for a long-standing bug that can result in code that is only used in creation code to also be included in runtime bytecode", can also be used. To be more secured and future-proofed, please consider using the more updated version of Solidity for the following contracts.
optimism\packages\contracts-bedrock\contracts\deployment\SystemDictator.sol 2: pragma solidity 0.8.15; optimism\packages\contracts-bedrock\contracts\L1\L1CrossDomainMessenger.sol 2: pragma solidity 0.8.15; optimism\packages\contracts-bedrock\contracts\L1\L1StandardBridge.sol 2: pragma solidity 0.8.15; optimism\packages\contracts-bedrock\contracts\L1\L2OutputOracle.sol 2: pragma solidity 0.8.15; optimism\packages\contracts-bedrock\contracts\L1\OptimismPortal.sol 2: pragma solidity 0.8.15; optimism\packages\contracts-bedrock\contracts\L1\SystemConfig.sol 2: pragma solidity 0.8.15; optimism\packages\contracts-bedrock\contracts\L2\GasPriceOracle.sol 2: pragma solidity 0.8.15; optimism\packages\contracts-bedrock\contracts\L2\L1Block.sol 2: pragma solidity 0.8.15; optimism\packages\contracts-bedrock\contracts\L2\L2CrossDomainMessenger.sol 2: pragma solidity 0.8.15; optimism\packages\contracts-bedrock\contracts\L2\L2StandardBridge.sol 2: pragma solidity 0.8.15; optimism\packages\contracts-bedrock\contracts\L2\L2ToL1MessagePasser.sol 2: pragma solidity 0.8.15; optimism\packages\contracts-bedrock\contracts\L2\SequencerFeeVault.sol 2: pragma solidity 0.8.15; optimism\packages\contracts-bedrock\contracts\universal\OptimismMintableERC20Factory.sol 2: pragma solidity 0.8.15; optimism\packages\contracts-bedrock\contracts\universal\ProxyAdmin.sol 2: pragma solidity 0.8.15;
require(_gasLimit >= minimumGasLimit(), "SystemConfig: gas limit too low") CAN BE REFACTORED INTO A MODIFIER TO BE USED IN CORRESPONDING FUNCTIONSrequire(_gasLimit >= minimumGasLimit(), "SystemConfig: gas limit too low") is executed in both of the following SystemConfig.initialize and SystemConfig.setGasLimit functions. For better code organization and maintainability, please consider refactoring such require statement into a modifier to be used in these functions.
function initialize( address _owner, uint256 _overhead, uint256 _scalar, bytes32 _batcherHash, uint64 _gasLimit, address _unsafeBlockSigner, ResourceMetering.ResourceConfig memory _config ) public initializer { __Ownable_init(); transferOwnership(_owner); overhead = _overhead; scalar = _scalar; batcherHash = _batcherHash; gasLimit = _gasLimit; _setUnsafeBlockSigner(_unsafeBlockSigner); _setResourceConfig(_config); require(_gasLimit >= minimumGasLimit(), "SystemConfig: gas limit too low"); }
function setGasLimit(uint64 _gasLimit) external onlyOwner { require(_gasLimit >= minimumGasLimit(), "SystemConfig: gas limit too low"); gasLimit = _gasLimit; bytes memory data = abi.encode(_gasLimit); emit ConfigUpdate(VERSION, UpdateType.GAS_LIMIT, data); }
To improve readability and maintainability, a constant can be used instead of the magic number. Please consider replacing the magic numbers, such as 16, used in the following code with constants.
optimism\packages\contracts-bedrock\contracts\L1\OptimismPortal.sol 197: return _byteCount * 16 + 21000; 461: require(_data.length <= 120_000, "OptimismPortal: data too large"); optimism\packages\contracts-bedrock\contracts\L2\GasPriceOracle.sol 122: total += 4; 124: total += 16; 128: return unsigned + (68 * 16);
ProxyAdmin: unknown proxy type is repeatedly used in the following ProxyAdmin.getProxyImplementation, ProxyAdmin.getProxyAdmin, and ProxyAdmin.changeProxyAdmin functions. For better maintainability, please consider creating a constant for ProxyAdmin: unknown proxy type and using such constant instead of hardcoding ProxyAdmin: unknown proxy type in these functions.
function getProxyImplementation(address _proxy) external view returns (address) { ProxyType ptype = proxyType[_proxy]; ... } else { revert("ProxyAdmin: unknown proxy type"); } }
function getProxyAdmin(address payable _proxy) external view returns (address) { ProxyType ptype = proxyType[_proxy]; ... } else { revert("ProxyAdmin: unknown proxy type"); } }
function changeProxyAdmin(address payable _proxy, address _newAdmin) external onlyOwner { ProxyType ptype = proxyType[_proxy]; ... } else { revert("ProxyAdmin: unknown proxy type"); } }
revert CAN BE CALLED INSTEAD OF assert TO PROVIDE CLEARER REASON FOR REVERSIONWhen the following ProxyAdmin.upgrade function reverts due to assert(false), it can be less clear about why such reversion happens since no reason is returned. To provide clearer reason for such reversion, please consider updating the ProxyAdmin.upgrade function to call revert with an appropriate reason string instead of executing assert(false) in the corresponding else block.
function upgrade(address payable _proxy, address _implementation) public onlyOwner { ProxyType ptype = proxyType[_proxy]; if (ptype == ProxyType.ERC1967) { Proxy(_proxy).upgradeTo(_implementation); } else if (ptype == ProxyType.CHUGSPLASH) { L1ChugSplashProxy(_proxy).setStorage( // bytes32(uint256(keccak256('eip1967.proxy.implementation')) - 1) 0x360894a13ba1a3210667c828492db98dca3e2076cc3735a920a3ca505d382bbc, bytes32(uint256(uint160(_implementation))) ); } else if (ptype == ProxyType.RESOLVED) { string memory name = implementationName[_proxy]; addressManager.setAddress(name, _implementation); } else { // It should not be possible to retrieve a ProxyType value which is not matched by // one of the previous conditions. assert(false); } }
The following GasPriceOracle.gasPrice, GasPriceOracle.baseFee, and GasPriceOracle.decimals functions are not called by other functions in the GasPriceOracle contract. Thus, the visibilities of these functions can be external instead of public.
function gasPrice() public view returns (uint256) { return block.basefee; }
function baseFee() public view returns (uint256) { return block.basefee; }
function decimals() public pure returns (uint256) { return DECIMALS; }
21000 IN OptimismPortal.minimumGasLimit FUNCTIONIt is a common practice to separate each 3 digits in a number by an underscore to improve code readability. 21000 can be updated to 21_000 in the following OptimismPortal.minimumGasLimit function.
function minimumGasLimit(uint64 _byteCount) public pure returns (uint64) { return _byteCount * 16 + 21000; }
The following code comment uses two to in having to to use. Please consider changing such phrase to having to use.
// Using this shorter variable as an alias for address(0) just prevents us from having to // to use a new line for every single parameter.
When checking whether a boolean variable is true or false, some code explicitly compares it to true or false, such as the following code.
require(paused == false, ...);
require( finalizedWithdrawals[withdrawalHash] == false, ... );
if (success == false && tx.origin == Constants.ESTIMATION_ADDRESS) { ... }
Yet, some other code does not explicitly compare it to true or false, such as the following code.
if (_isCreation) { ... }
To improve code consistency, please consider updating the relevant code to handle the boolean variable comparisons consistently. If in favor of code readability, the relevant boolean variables can all be explicitly compared to true or false. Otherwise, if in favor of code efficiency, the relevant boolean variables can all utilize ! when needed and not be explicitly compared to true or false.
revert WITH CUSTOM ERRORS CAN BE EXECUTED INSTEAD OF EXECUTING require OR revert WITH REASON STRINGSAs mentioned in https://blog.soliditylang.org/2021/04/21/custom-errors, executing revert with a custom error can be more efficient than executing require or revert with a reason string. The followings are some examples where require or revert is executed. To make the code more efficient, please consider using revert statements with custom errors to replace the relevant require and revert statements.
function depositTransaction( address _to, uint256 _value, uint64 _gasLimit, bool _isCreation, bytes memory _data ) public payable metered(_gasLimit) { ... if (_isCreation) { require( _to == address(0), "OptimismPortal: must send to address(0) when creating a contract" ); } ... require( _gasLimit >= minimumGasLimit(uint64(_data.length)), "OptimismPortal: gas limit too small" ); ... require(_data.length <= 120_000, "OptimismPortal: data too large"); ... }
function step5() public onlyOwner step(5) { ... require(dynamicConfigSet, "SystemDictator: dynamic oracle config is not yet initialized"); ... try L1CrossDomainMessenger(config.proxyAddressConfig.l1CrossDomainMessengerProxy) .initialize() { ... } catch Error(string memory reason) { require( keccak256(abi.encodePacked(reason)) == keccak256("Initializable: contract is already initialized"), string.concat("SystemDictator: unexpected error initializing L1XDM: ", reason) ); } catch { revert("SystemDictator: unexpected error initializing L1XDM (no reason)"); } ... }
function finalizeWithdrawalTransaction(Types.WithdrawalTransaction memory _tx) external whenNotPaused { ... require( l2Sender == Constants.DEFAULT_L2_SENDER, "OptimismPortal: can only trigger one withdrawal per transaction" ); ... require( provenWithdrawal.timestamp != 0, "OptimismPortal: withdrawal has not been proven yet" ); ... require( provenWithdrawal.timestamp >= L2_ORACLE.startingTimestamp(), "OptimismPortal: withdrawal timestamp less than L2 Oracle starting timestamp" ); ... require( _isFinalizationPeriodElapsed(provenWithdrawal.timestamp), "OptimismPortal: proven withdrawal finalization period has not elapsed" ); ... require( proposal.outputRoot == provenWithdrawal.outputRoot, "OptimismPortal: output root proven is not the same as current output root" ); ... require( _isFinalizationPeriodElapsed(proposal.timestamp), "OptimismPortal: output proposal finalization period has not elapsed" ); ... require( finalizedWithdrawals[withdrawalHash] == false, "OptimismPortal: withdrawal has already been finalized" ); ... if (success == false && tx.origin == Constants.ESTIMATION_ADDRESS) { revert("OptimismPortal: withdrawal failed"); } }
https://docs.soliditylang.org/en/v0.8.20/style-guide.html#order-of-functions suggests that functions in a contract should be grouped and ordered as follows with the view and pure functions being placed last within each group:
The following orders of functions are some examples that do not follow the official style guide. Please consider updating the relevant orders of functions accordingly.
The OptimismPortal.receive function is placed after the OptimismPortal.minimumGasLimit public function.
https://github.com/ethereum-optimism/optimism/blob/6eb05430d1ec1ae18ee96c2a206c60cc80fcbcf6/packages/contracts-bedrock/contracts/L1/OptimismPortal.sol#L196-L209
function minimumGasLimit(uint64 _byteCount) public pure returns (uint64) { return _byteCount * 16 + 21000; } ... receive() external payable { depositTransaction(msg.sender, msg.value, RECEIVE_DEFAULT_GAS_LIMIT, false, bytes("")); }
The OptimismPortal.donateETH external function is placed after the OptimismPortal.minimumGasLimit public function.
https://github.com/ethereum-optimism/optimism/blob/6eb05430d1ec1ae18ee96c2a206c60cc80fcbcf6/packages/contracts-bedrock/contracts/L1/OptimismPortal.sol#L196-L217
function minimumGasLimit(uint64 _byteCount) public pure returns (uint64) { return _byteCount * 16 + 21000; } ... function donateETH() external payable { // Intentionally empty. }
The SystemConfig.resourceConfig external view function is placed before the SystemConfig.setResourceConfig external non-view function.
https://github.com/ethereum-optimism/optimism/blob/4a01d2750ea10ad1109ff643faea2d8cfb28013f/packages/contracts-bedrock/contracts/L1/SystemConfig.sol#L245-L258
function resourceConfig() external view returns (ResourceMetering.ResourceConfig memory) { return _resourceConfig; } ... function setResourceConfig(ResourceMetering.ResourceConfig memory _config) external onlyOwner { _setResourceConfig(_config); }
NatSpec comments provide rich code documentation. The following functions miss the @param and/or @return comments. Please consider completing the NatSpec comments for these functions.
The @param comment for _finalizationPeriodSeconds is missing for the following constructor of the L2OutputOracle contract.
/** * @custom:semver 1.3.0 * * @param _submissionInterval Interval in blocks at which checkpoints must be submitted. * @param _l2BlockTime The time per L2 block, in seconds. * @param _startingBlockNumber The number of the first L2 block. * @param _startingTimestamp The timestamp of the first L2 block. * @param _proposer The address of the proposer. * @param _challenger The address of the challenger. */ constructor( uint256 _submissionInterval, uint256 _l2BlockTime, uint256 _startingBlockNumber, uint256 _startingTimestamp, address _proposer, address _challenger, uint256 _finalizationPeriodSeconds ) Semver(1, 3, 0) { ... }
The @param comment for _paused is missing for the following OptimismPortal.initialize function.
/** * @notice Initializer. */ function initialize(bool _paused) public initializer { l2Sender = Constants.DEFAULT_L2_SENDER; paused = _paused; __ResourceMetering_init(); }
The @param comment for _byteCount and @return comment are missing for the following OptimismPortal.minimumGasLimit function.
/** * @notice Computes the minimum gas limit for a deposit. The minimum gas limit * linearly increases based on the size of the calldata. This is to prevent * users from creating L2 resource usage without paying for it. This function * can be used when interacting with the portal to ensure forwards compatibility. * */ function minimumGasLimit(uint64 _byteCount) public pure returns (uint64) { return _byteCount * 16 + 21000; }
#0 - c4-judge
2023-06-16T13:45:51Z
0xleastwood marked the issue as grade-a
#1 - c4-judge
2023-06-16T16:19:56Z
0xleastwood marked the issue as selected for report
#2 - 0xleastwood
2023-07-17T13:11:58Z
I agree with the findings raised here.