Back to sivanesh_808's contests

Badger eBTC Audit + Certora Formal Verification Competition - sivanesh_808's results

Use stETH to borrow Bitcoin with 0% fees | The only smart contract based #BTC.

General Information

Platform: Code4rena

Start Date: 24/10/2023

Pot Size: $149,725 USDC

Total HM: 7

Participants: 52

Period: 21 days

Judge: ronnyx2017

Total Solo HM: 2

Id: 300

League: ETH

eBTC Protocol

Findings Distribution

Researcher Performance

Rank: 38/52

Findings: 1

Award: $21.02

Gas:
grade-b

🌟 Selected for report: 0

🚀 Solo Findings: 0

External Links

Code4rena Contest PageGithub Contest RepositoryGithub Findings RepositoryeBTC Protocol

Findings Information

🌟 Selected for report: DavidGiladi

Also found by: 0xhex, 0xta, Collinsoden, JCK, Madalad, SAQ, SY_S, Sathish9098, cheatc0d3, codeslide, hihen, hunter_w3b, jamshed, lsaudit, mgf15, nonseodion, oualidpro, petrichor, sivanesh_808, tala7985, unique, ybansal2403, zabihullahazadzoi

Awards

21.0214 USDC - $21.02

Labels

bug
G (Gas Optimization)
grade-b
sufficient quality report
G-04

External Links

Link to GitHub issue

G-01: Rearrange the Struct to save slot

Description:

Rearranging the structure of the MoveTokensParams struct can lead to significant gas savings in smart contracts. Each slot saved in the struct can potentially avoid an extra SSTORE operation, which costs around 20,000 gas for the first setting of the struct.

File:

BorrowerOperations.sol

Code Snippet:

Before Rearrangement:

struct MoveTokensParams {
    address user;
    uint256 collSharesChange;
    uint256 collAddUnderlying; // ONLY for isCollIncrease=true
    bool isCollIncrease;
    uint256 netDebtChange;
    bool isDebtIncrease;
}

After Rearrangement:

struct MoveTokensParams {
    uint256 collSharesChange;
    uint256 collAddUnderlying;
    uint256 netDebtChange;
    address user;
    bool isCollIncrease;
    bool isDebtIncrease;
    // potentially more bools or small fields here
}
Gas Savings Analysis:
  • Slot Savings: The rearranged structure saves 2 slots.
  • Gas Savings: With each slot potentially saving 20,000 gas on the first setting, the total gas savings could be up to 40,000 gas.
GitHub Link:

BorrowerOperations.sol

File:

IPriceFeed.sol

Code Snippet:

Before Rearrangement:

struct ChainlinkResponse {
    uint80 roundEthBtcId;
    uint80 roundStEthEthId;
    uint256 answer;
    uint256 timestampEthBtc;
    uint256 timestampStEthEth;
    bool success;
}

After Rearrangement:

struct ChainlinkResponse {
    uint80 roundEthBtcId;
    uint80 roundStEthEthId;
    bool success;
    uint256 answer;
    uint256 timestampEthBtc;
    uint256 timestampStEthEth;        
}
Gas Savings Analysis:
  • Slot Savings: The rearranged structure saves 1 slot.
  • Gas Savings: This could lead to a potential saving of up to 20,000 gas for the initial storage operation.
GitHub Link:

IPriceFeed.sol

G-02: Struct can tight pack

File :

IPriceFeed.sol#L26-L30

Description:

In the current FallbackResponse struct, the timestamp variable is declared as uint256, which occupies a complete storage slot of 256 bits. Given that timestamps generally represent time in seconds since the Unix epoch, the range provided by a uint240 is excessively large, covering a period significantly longer than 100 years. This over-allocation of storage is inefficient in terms of gas usage and contract storage.

  • Code: 
    struct FallbackResponse {
    
    uint256 answer;
  - uint256 timestamp;
  + uint248 timestamp; // Downcasted from uint256
    bool success;
}

Expected Savings

  • Storage Slots: The proposed change will save 1 storage slot by utilizing uint240 for the timestamp instead of uint256.

Source Code Reference

[G-03] State Variables Can Be Tightly Packed

File:

IPriceFeed

Description:

In the IPriceFeed contract, the minuteDecayFactor variable is declared as uint256. However, this size may be larger than necessary for its intended use. A smaller data type, such as uint248, could be sufficient depending on the maximum value minuteDecayFactor is expected to hold. This change would allow for more efficient use of storage space.

Code:
uint256 public constant SECONDS_IN_ONE_MINUTE = 60;
uint256 public constant MIN_REDEMPTION_FEE_FLOOR = (DECIMAL_PRECISION * 5) / 1000; // 0.5%
uint256 public redemptionFeeFloor = MIN_REDEMPTION_FEE_FLOOR;
bool public redemptionsPaused;

// Suggested Change: Downcast minuteDecayFactor to uint248
+ uint248 public minuteDecayFactor = 999037758833783000;
- uint256 public minuteDecayFactor = 999037758833783000;

uint256 public constant MIN_MINUTE_DECAY_FACTOR = 1; // Non-zero
uint256 public constant MAX_MINUTE_DECAY_FACTOR = 999999999999999999; // Very fast decay rate

uint256 internal immutable deploymentStartTime;
GitHub Link:

IPriceFeed.sol

[G-04] Unused state variables can save slot

Description : unused state variables can lead to unnecessary gas consumption. This occurs because every state variable occupies storage, which is a costly resource on the Ethereum blockchain.

File : RolesAuthority.sol

Code:


30. EnumerableSet.Bytes32Set internal enabledFunctionSigsPublic;
GitHub Link:

RolesAuthority.sol

File : Governor.sol

Code:


17. bytes32 NO_ROLES = bytes32(0);
GitHub Link:

Governor.sol

#0 - c4-pre-sort

2023-11-17T14:43:28Z

bytes032 marked the issue as sufficient quality report

#1 - c4-judge

2023-11-28T03:05:53Z

jhsagd76 marked the issue as grade-c

#2 - jhsagd76

2023-12-06T17:11:26Z

4 * 4

16

#3 - c4-judge

2023-12-06T20:55:20Z

jhsagd76 marked the issue as grade-b

AuditHub

A portfolio for auditors, a security profile for protocols, a hub for web3 security.

Built bymalatrax © 2024

Auditors

Browse

Contests

Browse

Get in touch

ContactTwitter