Platform: Code4rena
Start Date: 27/04/2023
Pot Size: $90,500 USDC
Total HM: 4
Participants: 43
Period: 7 days
Judge: GalloDaSballo
Id: 233
League: ETH
Rank: 35/43
Findings: 1
Award: $90.02
๐ Selected for report: 0
๐ Solo Findings: 0
๐ Selected for report: neutiyoo
Also found by: 0xSmartContract, 0xnev, Aymen0909, QiuhaoLi, ReyAdmirado, clayj, ihtishamsudo, naman1778, niser93, pontifex, tonisives, turvy_fuzz
90.0161 USDC - $90.02
keccak256(abi.encode(DOMAIN_TYPEHASH, keccak256(bytes("EigenLayer")), block.chainid, address(this))); is quite an expensive operation. If there is a hard fork, then this function will be called for each tx in deposit and delegateBySignature.
It is not necessary to calculate the domain separator on each tx, instead the ORIGINAL_CHAIN_ID can be replaced by the hard forked one. Then the calculation is done only once.
User has to pay more gas.
DelegationManager
function delegateToBySignature ... if (block.chainid != ORIGINAL_CHAIN_ID) { bytes32 domain_separator = keccak256(abi.encode(DOMAIN_TYPEHASH, keccak256(bytes("EigenLayer")), block.chainid, address(this))); digestHash = keccak256(abi.encodePacked("\x19\x01", domain_separator, structHash)); } else{ digestHash = keccak256(abi.encodePacked("\x19\x01", DOMAIN_SEPARATOR, structHash)); }
StrategyManager
function depositIntoStrategyWithSignature ... //if chainid has changed, we must re-compute the domain separator if (block.chainid != ORIGINAL_CHAIN_ID) { bytes32 domain_separator = keccak256(abi.encode(DOMAIN_TYPEHASH, keccak256(bytes("EigenLayer")), block.chainid, address(this))); digestHash = keccak256(abi.encodePacked("\x19\x01", domain_separator, structHash)); } else { digestHash = keccak256(abi.encodePacked("\x19\x01", DOMAIN_SEPARATOR, structHash)); }
After calculating the new DOMAIN_SEPARATOR on a hard fork, set the ORIGINAL_CHAIN_ID to the new chain id. Then you donโt have to calculate the domain separator again for each tx.
StrategyManager checks stakerStrategyList[msg.sender].length == 0
/** * Checking that `stakerStrategyList[msg.sender].length == 0` is not strictly necessary here, but prevents reverting very late in logic, * in the case that 'undelegate' is set to true but the `msg.sender` still has active deposits in EigenLayer. */ if (undelegateIfPossible && stakerStrategyList[msg.sender].length == 0) { _undelegate(msg.sender); }
In the next function call, _undelegate(msg.sender);, has this as the first check as well.
function _undelegate(address depositor) internal { require(stakerStrategyList[depositor].length == 0, "StrategyManager._undelegate: depositor has active deposits");
This is unnecessary double read from storage.
For example:
function slashQueuedWithdrawal(address recipient, QueuedWithdrawal calldata queuedWithdrawal, IERC20[] calldata tokens, uint256[] calldata indicesToSkip) external onlyOwner onlyFrozen(queuedWithdrawal.delegatedAddress) nonReentrant {
Owner is a trusted entity and is not expected to try a reentrancy attack.
#0 - GalloDaSballo
2023-06-01T16:36:44Z
In queueWithdrawal, stakerStrategyList[msg.sender].length == 0 check is not necessary 100
Rest is invalid -2
#1 - c4-judge
2023-06-01T16:59:04Z
GalloDaSballo marked the issue as grade-b