Platform: Code4rena
Start Date: 06/01/2023
Pot Size: $210,500 USDC
Total HM: 27
Participants: 73
Period: 14 days
Judge: 0xean
Total Solo HM: 18
Id: 203
League: ETH
Rank: 61/73
Findings: 1
Award: $72.44
π Selected for report: 0
π Solo Findings: 0
π Selected for report: IllIllI
Also found by: 0xA5DF, 0xSmartContract, 0xhacksmithh, AkshaySrivastav, Awesome, Aymen0909, Bauer, Bnke0x0, Breeje, Budaghyan, Cyfrin, Madalad, NoamYakov, RHaO-sec, Rageur, RaymondFam, ReyAdmirado, Rolezn, SAAJ, SaharDevep, Sathish9098, __141345__, amshirif, arialblack14, c3phas, carlitox477, chaduke, delfin454000, descharre, nadin, oyc_109, pavankv, saneryee, shark
72.4433 USDC - $72.44
| Issue | Instances | |
|---|---|---|
| [G-001] | x += y or x -= y costs more gas than x = x + y or x = x - y for state variables | 18 |
| [G-002] | Splitting require() statements that use && saves gas | 15 |
| [G-003] | storage pointer to a structure is cheaper than copying each value of the structure into memory, same for array and mapping | 22 |
| [G-004] | Functions guaranteed to revert when called by normal users can be marked payable | 8 |
| [G-005] | Don't use _msgSender() if not supporting EIP-2771 | 13 |
| [G-006] | Multiple address/ID mappings can be combined into a single mapping of an address/ID to a struct, where appropriate | 4 |
| [G-007] | Using calldata instead of memory for read-only arguments in external functions saves gas | 15 |
| [G-008] | Multiple accesses of a mapping/array should use a local variable cache | 7 |
| [G-009] | internal functions only called once can be inlined to save gas | 5 |
| [G-010] | Use a more recent version of solidity | 7 |
| [G-011] | Replace modifier with function | 4 |
| [G-012] | Use named returns for local variables where it is possible. | 6 |
Using the addition operator instead of plus-equals saves 113 gas. Usually does not work with struct and mappings.
Total:18
contracts/libraries/Fixed.sol#L537
537: if (mm > 0) result += 1;
contracts/libraries/Fixed.sol#L504
504: if (mm > lo) hi -= 1;
contracts/libraries/Fixed.sol#L555
555: if (mm < lo) hi -= 1;
contracts/libraries/Fixed.sol#L505
505: lo -= mm;
contracts/libraries/Fixed.sol#L509
509: lo += hi * ((0 - pow2) / pow2 + 1);
contracts/libraries/Fixed.sol#L539
539: if (mm > ((z - 1) / 2)) result += 1;
contracts/libraries/Fixed.sol#L392
392: decimals -= 18;
contracts/libraries/Fixed.sol#L104
104: shiftLeft += 18;
387: stakeRSR -= stakeRSRToTake;
412: seizedRSR += draftRSR;
403: seizedRSR += draftRSRToTake;
699: totalStakes += amount;
229: stakeRSR += rsrAmount;
516: payoutLastPaid += numPeriods * rewardPeriod;
721: totalStakes -= amount;
417: seizedRSR += (rewards * rsrAmount + (rsrBalance - 1)) / rsrBalance;
81: lastPayout += numPeriods * period;
contracts/p1/BasketHandler.sol#L636
636: nonce += 1;
&& saves gasWhen using && in a require() statement, the entire statement will be evaluated before the transaction reverts. If the first condition is false, the second condition will not be evaluated. This means that if the first condition is false, the second condition will not be evaluated, which is a waste of gas. Splitting the require() statement into two separate statements will save gas.
Total:15
contracts/mixins/Auth.sol#L181
181: require(shortFreeze_ > 0 && shortFreeze_ <= MAX_SHORT_FREEZE, "short freeze out of range");
contracts/mixins/Auth.sol#L188
188: require(longFreeze_ > 0 && longFreeze_ <= MAX_LONG_FREEZE, "long freeze out of range");
contracts/plugins/assets/Asset.sol#L50
50: require(oracleError_ > 0 && oracleError_ < FIX_ONE, "oracle error out of range");
821: require(val > 0 && val <= MAX_REWARD_PERIOD, "invalid rewardPeriod");
813: require(val > 0 && val <= MAX_UNSTAKING_DELAY, "invalid unstakingDelay");
contracts/p1/Broker.sol#L134-L137
134: require( 135: newAuctionLength > 0 && newAuctionLength <= MAX_AUCTION_LENGTH, 136: "invalid auctionLength" 137: );
89: require(period_ > 0 && period_ <= MAX_PERIOD, "invalid period");
623: require(index >= item.left && index < item.right, "out of range");
813: require(uint192(low) >= 1e9 && uint192(high) <= 1e27, "BU rate out of range");
410: require(queue.left <= endId && endId <= queue.right, "out of range");
741: require(queue.left <= endId && endId <= queue.right, "out of range");
590: require(val > 0 && val <= MAX_ISSUANCE_RATE, "invalid issuanceRate");
contracts/p1/RevenueTrader.sol#L72
72: require(buyPrice > 0 && buyPrice < FIX_MAX, "buy asset price unknown");
contracts/p1/Deployer.sol#L109
109: require(owner != address(0) && owner != address(this), "invalid owner");
contracts/p1/Deployer.sol#L48-L65
48: require( 49: address(rsr_) != address(0) && 50: address(gnosis_) != address(0) && 51: address(rsrAsset_) != address(0) && 52: address(implementations_.main) != address(0) && 53: address(implementations_.trade) != address(0) && 54: address(implementations_.components.assetRegistry) != address(0) && 55: address(implementations_.components.backingManager) != address(0) && 56: address(implementations_.components.basketHandler) != address(0) && 57: address(implementations_.components.broker) != address(0) && 58: address(implementations_.components.distributor) != address(0) && 59: address(implementations_.components.furnace) != address(0) && 60: address(implementations_.components.rsrTrader) != address(0) && 61: address(implementations_.components.rTokenTrader) != address(0) && 62: address(implementations_.components.rToken) != address(0) && 63: address(implementations_.components.stRSR) != address(0), 64: "invalid address" 65: );
storage pointer to a structure is cheaper than copying each value of the structure into memory, same for array and mappingIt may not be obvious, but every time you copy a storage struct/array/mapping to a memory variable, you are literally copying each member by reading it from storage, which is expensive. And when you use the storage keyword, you are just storing a pointer to the storage, which is much cheaper.
Total:22
contracts/plugins/aave/StaticATokenLM.sol#L389
389: address[] memory assets = new address[](1);
contracts/plugins/aave/StaticATokenLM.sol#L411
411: address[] memory assets = new address[](1);
contracts/plugins/aave/StaticATokenLM.sol#L545
545: address[] memory assets = new address[](1);
contracts/plugins/aave/StaticATokenLM.sol#L582
582: address[] memory assets = new address[](1);
contracts/p1/BackingManager.sol#L219
219: uint256[] memory toRSR = new uint256[](length);
contracts/p1/BackingManager.sol#L220
220: uint256[] memory toRToken = new uint256[](length);
contracts/p1/BasketHandler.sol#L642
642: uint192[] memory refAmts = new uint192[](basketLength);
contracts/p1/BasketHandler.sol#L541
541: uint192[] memory goodWeights = new uint192[](targetsLength);
contracts/p1/BasketHandler.sol#L545
545: uint192[] memory totalWeights = new uint192[](targetsLength);
contracts/p1/BasketHandler.sol#L225
225: bytes32[] memory names = new bytes32[](erc20s.length);
contracts/p1/BasketHandler.sol#L169
169: uint192[] memory refAmts = new uint192[](basket.erc20s.length);
contracts/p1/Distributor.sol#L105
105: Transfer[] memory transfers = new Transfer[](destinations.length());
666: uint256[] memory amt = new uint256[](tokensLen);
750: uint256[] memory amtDeposits = new uint256[](tokensLen);
465: (address[] memory erc20s, uint256[] memory amounts) = basketHandler.quote(baskets, FLOOR);
contracts/p1/Deployer.sol#L230
230: IAsset[] memory assets = new IAsset[](2);
contracts/p1/mixins/RewardableLib.sol#L62
62: IERC20[] memory erc20s = reg.erc20s();
contracts/p1/mixins/RewardableLib.sol#L64
64: uint256[] memory deltas = new uint256[](erc20sLen);
contracts/p1/mixins/RecollateralizationLib.sol#L433
433: IERC20[] memory basketERC20s = components.bh.basketTokens();
contracts/interfaces/IBasketHandler.sol#L88
88: returns (address[] memory erc20s, uint256[] memory quantities);
contracts/interfaces/IFacadeRead.sol#L90
90: returns (IERC20[] memory erc20s, uint256 max);
contracts/interfaces/IFacadeRead.sol#L27
27: returns (address[] memory tokens, uint256[] memory deposits);
Using storage instead of memory
If a function modifier such as onlyOwner is used, the function will revert if a normal user tries to pay the function. Marking the function as payable will lower the gas cost for legitimate callers because the compiler will not include checks for whether a payment was provided.
The extra opcodes avoided are CALLVALUE(2),DUP1(3),ISZERO(3),PUSH2(3),JUMPI(10),PUSH1(3),DUP1(3),REVERT(0),JUMPDEST(1),POP(2), which costs an average of about 21 gas per call to the function, in addition to the extra deployment cost.
Total:8
contracts/mixins/Auth.sol#L157
157: function unfreeze() external onlyRole(OWNER) {
contracts/mixins/Auth.sol#L180
180: function setShortFreeze(uint48 shortFreeze_) public onlyRole(OWNER) {
contracts/mixins/Auth.sol#L165
165: function pause() external onlyRole(PAUSER) {
contracts/mixins/Auth.sol#L187
187: function setLongFreeze(uint48 longFreeze_) public onlyRole(OWNER) {
contracts/mixins/Auth.sol#L120
120: function freezeShort() external onlyRole(SHORT_FREEZER) {
contracts/mixins/Auth.sol#L148
148: function freezeForever() external onlyRole(OWNER) {
contracts/mixins/Auth.sol#L172
172: function unpause() external onlyRole(PAUSER) {
contracts/mixins/Auth.sol#L135
135: function freezeLong() external onlyRole(LONG_FREEZER) {
Mark the function as payable.
_msgSender() if not supporting EIP-2771The use of _msgSender() when there is no implementation of a meta transaction mechanism that uses it, such as EIP-2771, very slightly increases gas consumption.
Total:13
contracts/mixins/Auth.sol#L139
139: if (longFreezes[_msgSender()] == 0) _revokeRole(LONG_FREEZER, _msgSender());
contracts/mixins/Auth.sol#L136
136: longFreezes[_msgSender()] -= 1;
contracts/plugins/aave/ERC20.sol#L215
215: _allowances[_msgSender()][spender].sub(
contracts/plugins/aave/ERC20.sol#L189
189: _approve(_msgSender(), spender, _allowances[_msgSender()][spender].add(addedValue));
contracts/plugins/aave/ERC20.sol#L118
118: _transfer(_msgSender(), recipient, amount);
contracts/plugins/aave/ERC20.sol#L143
143: _approve(_msgSender(), spender, amount);
contracts/plugins/aave/ERC20.sol#L168
168: _allowances[sender][_msgSender()].sub(
633: _approve(_msgSender(), spender, amount);
421: IERC20Upgradeable(address(rsr)).safeTransfer(_msgSender(), seizedRSR);
contracts/p1/StRSRVotes.sol#L115
115: _delegate(_msgSender(), delegatee);
125: require(trades[_msgSender()], "unrecognized trade contract");
178: issue(_msgSender(), amtRToken);
570: _burn(_msgSender(), amtRToken);
Replace _msgSender() with msg.sender if there is no mechanism to support meta-transactions like EIP-2771 implemented.
Saves a storage slot for the mapping. Depending on the circumstances and sizes of types, can avoid a Gsset (20000 gas) per mapping combined. Reads and subsequent writes can also be cheaper when a function requires both values and they both fit in the same storage slot. Finally, if both fields are accessed in the same function, can save ~42 gas per access due to not having to recalculate the key's keccak256 hash (Gkeccak256 - 30 gas) and that calculation's associated stack operations.
Total:4
contracts/plugins/aave/StaticATokenLM.sol#L74-L76
74: mapping(address => uint256) private _userSnapshotRewardsPerToken; 75: // user => unclaimedRewards (in RAYs) 76: mapping(address => uint256) private _unclaimedRewards;
contracts/p1/StRSR.sol#L81-L82
81: mapping(uint256 => mapping(address => CumulativeDraft[])) public draftQueues; // {drafts} 82: mapping(uint256 => mapping(address => uint256)) public firstRemainingDraft; // draft index
contracts/p1/StRSRVotes.sol#L38-L40
38: mapping(uint256 => mapping(address => Checkpoint[])) private _checkpoints; // {qStRSR} 39: // `_totalSupplyCheckpoints[era]` is the history of totalSupply values during era `era` 40: mapping(uint256 => Checkpoint[]) private _totalSupplyCheckpoints; // {qStRSR}
contracts/p1/BasketHandler.sol#L40-L42
40: mapping(IERC20 => uint192) targetAmts; 41: // Cached view of the target unit for each erc20 upon setup 42: mapping(IERC20 => bytes32) targetNames;
calldata instead of memory for read-only arguments in external functions saves gasWhen a function with a memory array is called externally, the abi.decode() step has to use a for-loop to copy each index of the calldata to the memory index. Each iteration of this for-loop costs at least 60 gas (i.e. 60 * <mem_array>.length). Using calldata directly, obliviates the need for such a loop in the contract code and runtime execution. Note that even if an interface defines a function as having memory arguments, it's still valid for implementation contracs to use calldata arguments instead.<br><br> If the array is passed to an internal function which passes the array to another internal function where the array is modified and therefore memory is used in the external call, it's still more gass-efficient to use calldata when the external function uses modifiers, since the modifiers may prevent the internal functions from being called. Structs have the same overhead as an array of length one.
Total:15
contracts/plugins/governance/Governance.sol#L85-L88
85: function propose( 86: address[] memory targets, 87: uint256[] memory values, 88: bytes[] memory calldatas,
contracts/plugins/governance/Governance.sol#L95-L98
95: function propose( 96: address[] memory targets, 97: uint256[] memory values, 98: bytes[] memory calldatas,
contracts/plugins/governance/Governance.sol#L105-L108
105: function propose( 106: address[] memory targets, 107: uint256[] memory values, 108: bytes[] memory calldatas,
contracts/plugins/governance/Governance.sol#L116-L119
116: function propose( 117: address[] memory targets, 118: uint256[] memory values, 119: bytes[] memory calldatas,
contracts/plugins/governance/Governance.sol#L126-L129
126: function propose( 127: address[] memory targets, 128: uint256[] memory values, 129: bytes[] memory calldatas,
contracts/plugins/governance/Governance.sol#L85-L88
85: function queue( 86: address[] memory targets, 87: uint256[] memory values, 88: bytes[] memory calldatas,
contracts/plugins/governance/Governance.sol#L95-L98
95: function queue( 96: address[] memory targets, 97: uint256[] memory values, 98: bytes[] memory calldatas,
contracts/plugins/governance/Governance.sol#L105-L108
105: function queue( 106: address[] memory targets, 107: uint256[] memory values, 108: bytes[] memory calldatas,
contracts/plugins/governance/Governance.sol#L116-L119
116: function queue( 117: address[] memory targets, 118: uint256[] memory values, 119: bytes[] memory calldatas,
contracts/plugins/governance/Governance.sol#L126-L129
126: function queue( 127: address[] memory targets, 128: uint256[] memory values, 129: bytes[] memory calldatas,
contracts/plugins/governance/Governance.sol#L85-L88
85: function cancel( 86: address[] memory targets, 87: uint256[] memory values, 88: bytes[] memory calldatas,
contracts/plugins/governance/Governance.sol#L95-L98
95: function cancel( 96: address[] memory targets, 97: uint256[] memory values, 98: bytes[] memory calldatas,
contracts/plugins/governance/Governance.sol#L105-L108
105: function cancel( 106: address[] memory targets, 107: uint256[] memory values, 108: bytes[] memory calldatas,
contracts/plugins/governance/Governance.sol#L116-L119
116: function cancel( 117: address[] memory targets, 118: uint256[] memory values, 119: bytes[] memory calldatas,
contracts/plugins/governance/Governance.sol#L126-L129
126: function cancel( 127: address[] memory targets, 128: uint256[] memory values, 129: bytes[] memory calldatas,
mapping/array should use a local variable cacheThe instances below point to the second+ access of a value inside a mapping/array, within a function. Caching a mapping's value in a local storage or calldata variable when the value is accessed multiple times, saves ~42 gas per access due to not having to recalculate the key's keccak256 hash (Gkeccak256 - 30 gas) and that calculation's associated stack operations. Caching an array's struct avoids recalculating the array offsets into memory/calldata (δΈ[G-001]η±»δΌΌ)
Total:1
contracts/mixins/Auth.sol#L135-L141
function freezeLong() external onlyRole(LONG_FREEZER) { longFreezes[_msgSender()] -= 1; // reverts on underflow // Revoke on 0 charges as a cleanup step if (longFreezes[_msgSender()] == 0) _revokeRole(LONG_FREEZER, _msgSender()); freezeUntil(uint48(block.timestamp) + longFreeze); }
Not inlining costs 20 to 40 gas because of two extra JUMP instructions and additional stack operations needed for function calls.
Total:5
795: function _useNonce(address owner) internal returns (uint256 current) {
694: function _mint(address account, uint256 amount) internal virtual {
708: function _burn(address account, uint256 amount) internal virtual {
contracts/p1/StRSRVotes.sol#L137
137: function _mint(address account, uint256 amount) internal override {
contracts/p1/StRSRVotes.sol#L142
142: function _burn(address account, uint256 amount) internal override {
Same as description
0.8.2 to get simple compiler automatic inlining0.8.3 to get better struct packing and cheaper multiple storage reads0.8.4 to get custom errors, which are cheaper at deployment than revert()/require() strings0.8.10 to have external calls skip contract existence checks if the external call has a return valueTotal:7
contracts/plugins/aave/ERC20.sol#L3
3: pragma solidity ^0.6.0;
contracts/plugins/aave/RayMathNoRounding.sol#L2
2: pragma solidity 0.6.12;
contracts/plugins/aave/IAaveIncentivesController.sol#L2
2: pragma solidity 0.6.12;
contracts/plugins/aave/StaticATokenErrors.sol#L2
2: pragma solidity 0.6.12;
contracts/plugins/aave/IAToken.sol#L2
2: pragma solidity 0.6.12;
contracts/plugins/aave/IStaticATokenLM.sol#L2
2: pragma solidity 0.6.12;
contracts/plugins/aave/StaticATokenLM.sol#L2
2: pragma solidity 0.6.12;
Current version: 0.8.17 (2022-11)
Modifiers make code more elegant, but cost more than normal functions.
Total:4
contracts/plugins/aave/ReentrancyGuard.sol#L49
49: modifier nonReentrant() {
contracts/p1/mixins/Component.sol#L46
46: modifier notFrozen() {
contracts/p1/mixins/Component.sol#L41
41: modifier notPausedOrFrozen() {
contracts/p1/mixins/Component.sol#L51
51: modifier governance() {
It is not necessary to have both a named return and a return statement.
Total:6
contracts/plugins/aave/StaticATokenLM.sol#L304
304: uint256 amountToMint = _dynamicToStaticAmount(amount, rate());
contracts/libraries/Fixed.sol#L159
159: uint256 result = numerator / divisor;
contracts/libraries/Fixed.sol#L321
321: uint256 result = FIX_SCALE_SQ;
contracts/libraries/Fixed.sol#L532
532: uint256 result = mulDiv256(x, y, z);
455: else right = test;
97: GnosisTrade trade = GnosisTrade(address(tradeImplementation).clone());
#0 - c4-judge
2023-01-24T23:16:24Z
0xean marked the issue as grade-b