Platform: Code4rena
Start Date: 21/11/2022
Pot Size: $90,500 USDC
Total HM: 18
Participants: 101
Period: 7 days
Judge: Picodes
Total Solo HM: 4
Id: 183
League: ETH
Rank: 55/101
Findings: 1
Award: $53.49
🌟 Selected for report: 0
🚀 Solo Findings: 0
🌟 Selected for report: 0xSmartContract
Also found by: 0xAgro, 0xNazgul, 0xPanda, 0xbepresent, 0xfuje, Awesome, B2, Bnke0x0, Deivitto, Diana, Funen, Jeiwan, JohnSmith, Josiah, R2, RaymondFam, Rolezn, Sathish9098, Waze, adriro, aphak5010, brgltd, btk, carrotsmuggler, ch0bu, chaduke, codeislight, codexploder, cryptostellar5, csanuragjain, danyams, datapunk, delfin454000, deliriusz, eierina, erictee, fatherOfBlocks, gz627, gzeon, hansfriese, hihen, jadezti, joestakey, keccak123, martin, nameruse, oyc_109, pedr02b2, perseverancesuccess, rbserver, rotcivegaf, rvierdiiev, sakshamguruji, shark, simon135, subtle77, unforgiven, xiaoming90, yixxas
53.4851 USDC - $53.49
distributeFees()A user can call the distributeFees() function with no amount of token to emit a DistributeFees() event. Because of this, users can spam the contract with useless events.
PirexFees.sol Line 100 - Line 116
100: function distributeFees(ERC20 token) external { 101: uint256 distribution = token.balanceOf(address(this)); 102: uint256 treasuryDistribution = (distribution * treasuryFeePercent) / 103: FEE_PERCENT_DENOMINATOR; 104: uint256 contributorsDistribution = distribution - treasuryDistribution; 105: 106: emit DistributeFees( 107: token, 108: distribution, 109: treasuryDistribution, 110: contributorsDistribution 111: ); 112: 113: // Favoring push over pull to reduce accounting complexity for different tokens 114: token.safeTransfer(treasury, treasuryDistribution); 115: token.safeTransfer(contributors, contributorsDistribution); 116: }
To prevent this issue, consider requiring that the variable distribution at Line 101 is not zero.
delete to clear variablesdelete assigns the default value back to the given variable. For example, executing a delete to a uint variable will set the variable's value to 0.
The reason to use delete is because it better conveys the intention of what you are trying to do.
Here are the instances:
PxGmxReward.sol Line 118
PirexRewards.sol Line 391
The event below has no parameters in it to emit anything. Consider either refactoring or removing this event.
File: PirexGmx.sol Line 144
144: event ClearVoteDelegate();
It is recommended that all functions and state variables should be well commented using the NatSpec documentation.
Here some contracts that are missing NatSpec entirety:
File: interfaces/IPirexRewards.sol
File: interfaces/IProducer.sol
File: interfaces/IAutoPxGlp.sol
DelegateRegistry.sol Line 10
Change "indeces" -> "indexes"
Very short identifier names e.g. (e, x, _t) can make code harder to read and potentially less maintainable.
For example:
File: PxGmxReward.sol: Line 71
71: UserState storage u = userRewardStates[user];
The variable name u is not very descriptive
block.timestampEvents emitted by Solidity already include the timestamp and block number. Emitting it twice only increases the gas used for the transaction.
Here are the instances of this issue:
File: PxGmxReward.sol (Line 61, Line 83)
61: emit GlobalAccrue(block.timestamp, totalSupply, rewards); ... 83: emit UserAccrue(user, block.timestamp, balance, rewards);
File: PirexRewards.sol Line 297, Line 323-328
297: emit UserAccrue(producerToken, user, block.timestamp, balance, rewards); ... 323: emit GlobalAccrue( 324: producerToken, 325: block.timestamp, 326: totalSupply, 327: rewards 328: );
#0 - c4-judge
2022-12-05T09:21:55Z
Picodes marked the issue as grade-b