Back to tnevler's contests

Frankencoin - tnevler's results

A decentralized and fully collateralized stablecoin.

General Information

Platform: Code4rena

Start Date: 12/04/2023

Pot Size: $60,500 USDC

Total HM: 21

Participants: 199

Period: 7 days

Judge: hansfriese

Total Solo HM: 5

Id: 231

League: ETH

Frankencoin

Findings Distribution

Researcher Performance

Rank: 117/199

Findings: 1

Award: $22.60

QA:
grade-b

🌟 Selected for report: 0

🚀 Solo Findings: 0

External Links

Code4rena Contest PageGithub Contest RepositoryGithub Findings RepositoryFrankencoin

Findings Information

🌟 Selected for report: juancito

Also found by: 0xAgro, 0xNorman, 0xSmartContract, 0xStalin, 0xTheC0der, 0xWaitress, 0xhacksmithh, 0xnev, 3dgeville, 8olidity, Arz, Aymen0909, BGSecurity, BRONZEDISC, Bauchibred, Bauer, BenRai, ChainHunters, ChrisTina, CodeFoxInc, DedOhWale, DishWasher, EloiManuel, IceBear, Inspex, Jorgect, Kaysoft, LeoGold, LewisBroadhurst, Madalad, MiloTruck, MohammedRizwan, Nyx, Polaris_tow, RaymondFam, SaharDevep, SanketKogekar, Sathish9098, SolidityATL, Udsen, W0RR1O, aria, ayden, berlin-101, bin2chen, catellatech, codeslide, crc32, decade, descharre, evmboi32, eyexploit, fatherOfBlocks, georgits, giovannidisiena, joestakey, karanctf, kodyvim, ltyu, lukris02, m9800, matrix_0wl, mov, mrpathfindr, nadin, niser93, p0wd3r, parlayan_yildizlar_takimi, pavankv, pontifex, qpzm, ravikiranweb3, rbserver, santipu_, shealtielanz, slvDev, tnevler, wonjun, xmxanuel, yixxas

Awards

22.6007 USDC - $22.60

Labels

bug
grade-b
QA (Quality Assurance)
Q-32

External Links

Link to GitHub issue

Report

Low Risk

[L-1]: Unsafe casting may overflow

Context:

  1. totalVotesAtAnchor = uint192(totalVotes() - roundingLoss - lostVotes); L146
  2. voteAnchor[to] = uint64(anchorTime() - recipientVotes / newbalance); // new example anchor is only 21 / 11 = 1 block in the past L161

Description:

While Solidity 0.8.x checks for overflows on arithmetic operations, it does not do so for casting.

Recommendation:

Use OpenZeppelin’s SafeCast library to prevent unexpected overflows.

Non-Critical Issues

[N-1]: Follow Solidity standard naming conventions

Context:

  1. IPositionFactory private immutable POSITION_FACTORY; // position contract to clone L28 (Local and State Variable should use mixedCase)
  2. uint256 public immutable MIN_APPLICATION_PERIOD; // for example 10 days L26 (Local and State Variable should use mixedCase)
  3. function DOMAIN_SEPARATOR() public view returns (bytes32) { L61 (Functions should use mixedCase)

Description:

The above codes don't follow Solidity's standard naming convention.

  • Structs should be named using the CapWords style. Examples: MyCoin, Position, PositionXY.
  • Events should be named using the CapWords style. Examples: Deposit, Transfer, Approval, BeforeTransfer, AfterTransfer.
  • Functions should use mixedCase. Examples: getBalance, transfer, verifyOwner, addMember, changeOwner.
  • Function arguments should use mixedCase. Examples: initialSupply, account, recipientAddress, senderAddress, newOwner.
  • Local and State Variable should use mixedCase. Examples: totalSupply, remainingSupply, balancesOf, creatorAddress, isPreSale, tokenExchangeRate.
  • Constants should be named with all capital letters with underscores separating words. Examples: MAX_BLOCKS, TOKEN_NAME, TOKEN_TICKER, CONTRACT_VERSION.
  • Modifier should use mixedCase. Examples: onlyBy, onlyAfter, onlyDuringThePreSale.
  • Enums, in the style of simple type declarations, should be named using the CapWords style. Examples: TokenGroup, Frame, HashStyle, CharacterLocation.

[N-2]: Missing leading underscores

Context:

  1. function collateralBalance() internal view returns (uint256){ L169
  2. function mintInternal(address target, uint256 amount, uint256 collateral_) internal { L193
  3. function restrictMinting(uint256 period) internal { L202
  4. function repayInternal(uint256 burnable) internal { L232
  5. function notifyRepaidInternal(uint256 amount) internal { L240
  6. function internalWithdrawCollateral(address target, uint256 amount) internal returns (uint256) { L268
  7. function checkCollateral(uint256 collateralReserve, uint256 atPrice) internal view { L282
  8. function emitUpdate() internal { L286
  9. IPositionFactory private immutable POSITION_FACTORY; // position contract to clone L28
  10. function minBid(Challenge storage challenge) internal view returns (uint256) { L188
  11. function returnCollateral(Challenge storage challenge, bool postpone) internal { L287
  12. uint256 private minterReserveE6; L39
  13. function allowanceInternal(address owner, address spender) internal view override returns (uint256) { L102
  14. function mintInternal(address target, uint256 amount) internal { L49
  15. function burnInternal(address zchfHolder, address target, uint256 amount) internal { L67
  16. function createClone(address target) internal returns (address result) { L37
  17. uint256 internal constant ONE_DEC18 = 10**18; L10
  18. uint256 internal constant THRESH_DEC18 = 10000000000000000;//0.01 L11
  19. function setOwner(address newOwner) internal { L39
  20. function requireOwner(address sender) internal view { L45
  21. uint256 private constant MINIMUM_EQUITY = 1000 * ONE_DEC18; L41
  22. uint32 private constant QUORUM = 300; L46
  23. uint8 private constant BLOCK_TIME_RESOLUTION_BITS = 24; L51
  24. uint192 private totalVotesAtAnchor; // Total number of votes at the anchor time, see comment on the um L75
  25. uint64 private totalVotesAnchorTime; // 40 Bit for the block number, 24 Bit sub-block time resolution L76
  26. mapping (address => uint64) private voteAnchor; // 40 Bit for the block number, 24 Bit sub-block time resolution L88
  27. function adjustTotalVotes(address from, uint256 amount, uint256 roundingLoss) internal { L144
  28. function adjustRecipientVoteAnchor(address to, uint256 amount) internal returns (uint256){ L157
  29. function anchorTime() internal view returns (uint64){ L172
  30. function canVoteFor(address delegate, address owner) internal view returns (bool) { L225
  31. function calculateSharesInternal(uint256 capitalBefore, uint256 investment) internal view returns (uint256) { L266
  32. uint256 internal constant INFINITY = (1 << 255); L47
  33. function allowanceInternal(address owner, address spender) internal view virtual returns (uint256) { L97

Description:

Internal and private functions, state variables, constants, and immutables should starting with an underscore.

[N-3]: Recommendations for long function declarations

Context:

  1. https://github.com/code-423n4/2023-04-frankencoin/blob/main/contracts/Position.sol#L50-L52
  2. function initializeClone(address owner, uint256 _price, uint256 _limit, uint256 _coll, uint256 _mint) external onlyHub { L76
  3. function notifyChallengeSucceeded(address _bidder, uint256 _bid, uint256 _size) external onlyHub returns (address, uint256, uint256, uint256, uint32) { L329
  4. https://github.com/code-423n4/2023-04-frankencoin/blob/main/contracts/MintingHub.sol#L60-L62
  5. https://github.com/code-423n4/2023-04-frankencoin/blob/main/contracts/MintingHub.sol#L89-L91
  6. function clonePosition(address position, uint256 _initialCollateral, uint256 _initialMint) public validPos(position) returns (address) { L124
  7. function launchChallenge(address _positionAddr, uint256 _collateralAmount) external validPos(_positionAddr) returns (uint256) { L140
  8. function suggestMinter(address _minter, uint256 _applicationPeriod, uint256 _applicationFee, string calldata _message) override external { L83
  9. function burnFrom(address payer, uint256 targetTotalBurnAmount, uint32 _reservePPM) external override minterOnly returns (uint256) { L223
  10. function calculateFreedAmount(uint256 amountExcludingReserve /* 41 */, uint32 reservePPM /* 20% */) public view returns (uint256){ L235
  11. function burnWithReserve(uint256 _amountExcludingReserve, uint32 _reservePPM) external override minterOnly returns (uint256) { L251

Description:

According to official solidity documentation:

  1. For long function declarations, it is recommended to drop each argument onto its own line at the same indentation level as the function body. The closing parenthesis and opening bracket should be placed on their own line as well at the same indentation level as the function declaration.
  2. If a long function declaration has modifiers, then each modifier should be dropped to its own line.

[N-4]: Multiline output parameters style

Context:

  1. function notifyChallengeSucceeded(address _bidder, uint256 _bid, uint256 _size) external onlyHub returns (address, uint256, uint256, uint256, uint32) { L329

Description:

According to official solidity documentation multiline output parameters and return statements should follow the same style recommended for wrapping long lines found in the Maximum Line Length section.

Recommendation:

Example:

function thisFunctionNameIsReallyLong(
    address a,
    address b,
    address c
)
    public
    returns (
        address someAddressName,
        uint256 LongArgument,
        uint256 Argument
    )
{
    doSomething()

    return (
        veryLongReturnArg1,
        veryLongReturnArg2,
        veryLongReturnArg3
    );
}

[N-5]: Wrong order of layout

Context:

  1. modifier alive() { L366 (modifiers must be before all functions)
  2. modifier noCooldown() { L373 (modifiers must be before all functions)
  3. modifier noChallenge() { L380 (modifiers must be before all functions)
  4. modifier onlyHub() { L387 (modifiers must be before all functions)
  5. modifier validPos(address position) { L115 (modifiers must be before all functions)
  6. modifier minterOnly() { L266 (modifiers must be before all functions)
  7. modifier onlyOwner() { L49 (modifiers must be before all functions)

Description: According to official solidity documentation inside each contract, library or interface, use the following order:

  1. Type declarations
  2. State variables
  3. Events
  4. Modifiers
  5. Functions

[N-6]: Natspec is incomplete

Context:

  1. function adjustTotalVotes(address from, uint256 amount, uint256 roundingLoss) internal { L144 (param roundingLoss is missing)

#0 - 0xA5DF

2023-04-27T10:04:03Z

L1 is dupe #393

#1 - c4-judge

2023-05-16T16:35:13Z

hansfriese marked the issue as grade-b

AuditHub

A portfolio for auditors, a security profile for protocols, a hub for web3 security.

Built bymalatrax © 2024

Auditors

Browse

Contests

Browse

Get in touch

ContactTwitter