Back to trustindistrust's contests

Juicebox contest - trustindistrust's results

The decentralized fundraising and treasury protocol.

General Information

Platform: Code4rena

Start Date: 18/10/2022

Pot Size: $50,000 USDC

Total HM: 13

Participants: 67

Period: 5 days

Judge: Picodes

Total Solo HM: 7

Id: 172

League: ETH

Juicebox

Findings Distribution

Researcher Performance

Rank: 14/67

Findings: 1

Award: $400.26

Gas:
grade-a

🌟 Selected for report: 0

🚀 Solo Findings: 0

External Links

Code4rena Contest PageGithub Contest RepositoryGithub Findings RepositoryJuicebox

Findings Information

🌟 Selected for report: Jeiwan

Also found by: 0x1f8b, 0x4non, 0x5rings, 0xSmartContract, Awesome, Aymen0909, Bnke0x0, CodingNameKiki, Diana, DimSon, JC, JrNet, LeoS, RaymondFam, ReyAdmirado, Saintcode_, Shinchan, __141345__, berndartmueller, bharg4v, brgltd, carlitox477, ch0bu, chaduke, cryptostellar5, emrekocak, gogo, lukris02, martin, mcwildy, sakman, trustindistrust, zishansami

Awards

400.2587 USDC - $400.26

Labels

bug
G (Gas Optimization)
high quality report
grade-a
G-05

External Links

Link to GitHub issue

Contracts include unused custom errors

Locations: 1 2

Description

Unused errors simply drive up the cost of deployment for the contracts involved. These unused errors may also represent holes in logic that were intended to be tested but were missed.

Ensure that the errors are unnecessary before removing them.

Use calldata when possible over memory for function arguments

Locations: 1 2 3 4 5 6 7 8 9 10 <-- This breaks a test in NFTReward_Unit.t.sol due to the use of a constructor to build arguments to call this initializer

Description

While this codebase already makes some use of calldata for function arguments, it can be used more pervasively than it is.

Savings

Output of forge snapshot --diff after changing just 3 instances of memory to calldata in JBTiered721DelegateProjectDeployer.sol

testMintAndTransferTieredVotingUnits(uint8,bool) (gas: -5658 (-0.062%)) 
testMintAndDelegateVotingUnits(uint8,bool) (gas: -5712 (-0.063%)) 
testRedeemAll() (gas: -7572 (-0.083%)) 
testRedeemAll() (gas: -7572 (-0.083%)) 
testRedeemAll() (gas: -7572 (-0.083%)) 
testMintAndDelegateTieredVotingUnits(uint8,bool) (gas: -7572 (-0.083%)) 
testMintAndTransferGlobalVotingUnits(uint8,bool) (gas: -7572 (-0.084%)) 
testMintOnPayIfMultipleTiersArePassed() (gas: -7572 (-0.085%)) 
testMintOnPayIfMultipleTiersArePassed() (gas: -7572 (-0.085%)) 
testMintOnPayIfMultipleTiersArePassed() (gas: -7572 (-0.085%)) 
testMintBeforeAndAfterTierChange(uint72) (gas: -7572 (-0.086%)) 
testMintBeforeAndAfterTierChange(uint72) (gas: -7572 (-0.086%)) 
testMintBeforeAndAfterTierChange(uint72) (gas: -7572 (-0.086%)) 
testMintReservedToken() (gas: -7572 (-0.087%)) 
testMintReservedToken() (gas: -7572 (-0.087%)) 
testMintReservedToken() (gas: -7572 (-0.087%)) 
testRedeemToken(uint16) (gas: -7572 (-0.087%)) 
testRedeemToken(uint16) (gas: -7572 (-0.087%)) 
testRedeemToken(uint16) (gas: -7572 (-0.087%)) 
testMintOnPayIfOneTierIsPassed(uint16) (gas: -7572 (-0.088%)) 
testMintOnPayIfOneTierIsPassed(uint16) (gas: -7572 (-0.088%)) 
testMintOnPayIfOneTierIsPassed(uint16) (gas: -7572 (-0.088%)) 
testMintOnPayUsingFallbackTiers(uint16) (gas: -7572 (-0.090%)) 
testMintOnPayUsingFallbackTiers(uint16) (gas: -7572 (-0.090%)) 
testMintOnPayUsingFallbackTiers(uint16) (gas: -7572 (-0.090%)) 
testDeployAndLaunchProject() (gas: -7572 (-0.093%)) 
testDeployAndLaunchProject() (gas: -7572 (-0.093%)) 
testDeployAndLaunchProject() (gas: -7572 (-0.093%)) 
testLaunchProjectFor_shouldLaunchProject(uint128) (gas: -7572 (-0.153%)) 
testLaunchProjectFor_shouldLaunchProject_nonFuzzed() (gas: -7572 (-0.153%)) 
Overall gas change: -223386 (-2.696%)

The range for all changes is approximately 5000-8000gas, with some large outliers, probably due to loops.

Remove revert check on JB721TieredGovernance.getPastTierVotes()

Location

Description

The JB721TieredGovernance contract contains functions for retrieving data from storage using the Checkpoints import.

The function Checkpoints.getAtBlock() already contains a require test to make sure the block being requested isn't the current block or later. While the if revert syntax used in JB721TieredGovernance is cheaper than the require, in the success case the same condition is tested twice, wasting gas.

Although this is a view function, it's plausible that it would be consumed by external integrations to make decisions based on voting power.

Mitigation

Remove the extraneous check.

Extra

If the check is required/intended for some other purpose, then getPastTierVotes() in the same contract should be updated to perform the same check, as it uses the same underlying call.

Rewrite function to not duplicate computation.

Locations: 1 2

Description

JB721Delegate.didRedeem() and JB721Delegate.redeemParams() contain some byte slicing to access a value that is treated as a bytes4. However, that same value could be extracted via a call to abi.decode already present later in the function.

Even with the uint256[] allocation from abi.decode before all of the revert checks have completed, it is still cheaper to move the line, name the bytes4 value and use it in the boolean check.

(bytes4 _interfaceId, uint256[] memory _decodedTokenIds) = abi.decode(_data.metadata, (bytes4, uint256[]));

// Check the 4 bytes interfaceId and handle the case where the metadata was not intended for this contract
if ( _data.metadata.length < 4  
    || _interfaceId != type(IJB721Delegate).interfaceId) { 
    revert INVALID_REDEMPTION_METADATA();
}

// Get a reference to the number of token IDs being checked.
uint256 _numberOfTokenIds = _decodedTokenIds.length;
Savings

Implementing the change in both applicable locations saves ~13200 gas throughout the test suite, with outliers at ~170 gas. A sample of forge snapshot --diff is provided:

testJBTieredNFTRewardDelegate_didPay_mintFirstBestTierIfMultipleAvailableAtSameFloor() (gas: -13235 (-0.169%)) 
testJBTieredNFTRewardDelegate_getvotingUnits_returnsTheTotalVotingUnits() (gas: -13236 (-0.170%)) 
testJBTieredNFTRewardDelegate_balanceOf_returnsCompleteBalance_coverage() (gas: -13236 (-0.170%)) 
testJBTieredNFTRewardDelegate_tiers_returnsAllTiersExcludingRemovedOnes_coverage() (gas: -13237 (-0.170%)) 
testJBTieredNFTRewardDelegate_adjustTiers_removeTiers(uint16,uint256,uint8) (gas: -12935 (-0.170%)) 
testJBTieredNFTRewardDelegate_tiers_returnsAllTiers_coverage() (gas: -13236 (-0.170%)) 
testJBTieredNFTRewardDelegate_cleanTiers_removeTheInactiveTiers(uint16,uint256,uint8) (gas: -13114 (-0.172%)) 
testJBTieredNFTRewardDelegate_totalRedemptionWeight_returnsCorrectTotalWeightAsFloorsCumSum_coverage() (gas: -13236 (-0.172%)) 
testJBTieredNFTRewardDelegate_totalSupply_returnsTotalSupply_coverage() (gas: -13236 (-0.172%)) 
testJBTieredNFTRewardDelegate_tier_returnsTheGivenTier_coverage() (gas: -39686 (-0.172%)) 
testJBTieredNFTRewardDelegate_adjustTiers_revertIfAddingWithReservedRate_coverage() (gas: -13236 (-0.172%)) 
testJBTieredNFTRewardDelegate_adjustTiers_revertIfAddingWithVotingPower_coverage() (gas: -13236 (-0.172%)) 
testJBTieredNFTRewardDelegate_adjustTiers_revertIfEmptyQuantity_coverage() (gas: -13236 (-0.172%)) 
testJBTieredNFTRewardDelegate_redemptionWeightOf_returnsCorrectWeightAsFloorsCumSum_coverage() (gas: -13236 (-0.172%)) 
testJBTieredNFTRewardDelegate_mintReservesFor_revertIfReservedMintingIsPausedInFundingCycle() (gas: -13235 (-0.173%)) 
testJBTieredNFTRewardDelegate_tiers_returnsAllTiers(uint16) (gas: -13235 (-0.175%)) 
testJBTieredNFTRewardDelegate_tier_returnsTheGivenTier(uint16,uint16) (gas: -13235 (-0.175%)) 
testJBTieredNFTRewardDelegate_mintFor_revertIfManualMintNotAllowed() (gas: -13235 (-0.175%)) 
testJBTieredNFTRewardDelegate_getvotingUnits_returnsTheTotalVotingUnits(uint16,address) (gas: -13235 (-0.175%)) 
testJBTieredNFTRewardDelegate_balanceOf_returnsCompleteBalance(uint16,address) (gas: -13236 (-0.175%)) 
testJBTieredNFTRewardDelegate_totalRedemptionWeight_returnsCorrectTotalWeightAsFloorsCumSum(uint16) (gas: -13236 (-0.175%)) 
testJBTieredNFTRewardDelegate_totalSupply_returnsTotalSupply(uint16) (gas: -13236 (-0.175%)) 
testJBTieredNFTRewardDelegate_redemptionWeightOf_returnsCorrectWeightAsFloorsCumSum(uint16,uint16,uint16) (gas: -13235 (-0.176%)) 
testLaunchProjectFor_shouldLaunchProject(uint128) (gas: -13233 (-0.269%)) 
testLaunchProjectFor_shouldLaunchProject_nonFuzzed() (gas: -13233 (-0.269%)) 
testJBTieredNFTRewardDelegate_adjustTiers_revertIfAddingWithVotingPower(uint8,uint8) (gas: -71272 (-0.889%)) 
testJBTieredNFTRewardDelegate_adjustTiers_revertIfAddingWithReservedRate(uint8,uint8) (gas: -71347 (-0.890%)) 
testJBTieredNFTRewardDelegate_adjustTiers_revertIfEmptyQuantity(uint8,uint8) (gas: -76315 (-0.953%)) 
Overall gas change: -1412710 (-15.835%)

Modify if statement with different cast for gas saving

Locations: 1 2

Description

Some functions contain a check to only perform an action if an argument isn't the zero address.

The test can be modified slightly to be symantically identical and save gas by avoiding a more-expensive cast.

// Set the token URI resolver if provided.
//if (_tokenUriResolver != IJBTokenUriResolver(address(0))) { 
if (address(_tokenUriResolver) != address(0)) {
    _store.recordSetTokenUriResolver(_tokenUriResolver);
}
Savings

This method saves 3200-3800 gas.

Running 1 test for contracts/forge-test/governance/JB721GlobalGovernance.t.sol:TestJBGlobalGovernance
[PASS] testMintAndTransferGlobalVotingUnits(uint8,bool) (runs: 256, μ: 8964598, ~: 8933856)
Test result: ok. 1 passed; 0 failed; finished in 1.80s
testMintAndTransferGlobalVotingUnits(uint8,bool) (gas: -3827 (-0.043%)) 
Overall gas change: -3827 (-0.043%)

#0 - c4-judge

2022-11-04T12:45:12Z

Picodes marked the issue as grade-a

AuditHub

A portfolio for auditors, a security profile for protocols, a hub for web3 security.

Built bymalatrax © 2024

Auditors

Browse

Contests

Browse

Get in touch

ContactTwitter