GalloDaSballo
commented
2 years ago Events Associated With Setter Functions
NC
Sanity Checks
L
Use immutable Instead of constant Whose Value is Expressed as a Call to keccak256()
Doesn't work https://github.com/GalloDaSballo/Braindead-Gas-Savings
constant Variables Should be Capitalized
Disagree with specific instances, they are just syntax for a name getter
Non-assembly Method Available. && String Concatenation Available
NC
No Storage Gap for Upgradeable Contracts
L
Lines Too Long
NC
Use of ecrecover is Susceptible to Signature Malleability
R as it cannot be used to replay
Missing NatSpec && Devoid of System Documentation and Complete Technical Specification
NC
Unchecked Return Value for transferERC20() Call
TODO - M-01 Upgrade
Inappropriate Use of Conditional Checks
NC
Use safeTransferFrom instead of transferFrom
TODO - M-01 Upgrade
External Call in Loop Could Lead to Denial of Service
Disagree, can be sidestepped by using a smaller size
Complementary Check for Contract Existence
Contract existence can be guaranteed, it's not being a contract (the opposite) that cannot be proven as a contract hash no size while executing from it's constructor, disputed.
Not Completely Using OpenZeppelin Contracts
Disputed dogma
block.timestamp Unreliable
Same, disputed without any reasoning
Missing Require Error Message
NC
I can tell it's automated but I think the volume is good
Events Associated With Setter Functions
Consider having events associated with setter functions emit both the new and old values instead of just the new value. Here are some of the few instances entailed:
https://github.com/code-423n4/2022-10-blur/blob/main/contracts/BlurExchange.sol#L221 https://github.com/code-423n4/2022-10-blur/blob/main/contracts/BlurExchange.sol#L230 https://github.com/code-423n4/2022-10-blur/blob/main/contracts/BlurExchange.sol#L239 https://github.com/code-423n4/2022-10-blur/blob/main/contracts/BlurExchange.sol#L247
Sanity Checks
Zero address and zero value checks should be implemented on
initialize()ofBlurExchange.solto avoid accidental error(s) that could result in non-functional calls associated with it:https://github.com/code-423n4/2022-10-blur/blob/main/contracts/BlurExchange.sol#L95-L118
Use
immutableInstead ofconstantWhose Value is Expressed as a Call tokeccak256()Despite not saving any gas, it’s part of the best practices to adopt
immutablevariables associated with expressions for calculated values, and better yet, have them passed into the constructor where possible.constantvariables, on the other hand, are more appropriately used for literal values written into the code. Here are some of the instances entailed:https://github.com/code-423n4/2022-10-blur/blob/main/contracts/lib/EIP712.sol#L20-L35
constantVariables Should be CapitalizedConstants should be named with all capital letters with underscores separating words if need be. Here are some of the instances entailed:
https://github.com/code-423n4/2022-10-blur/blob/main/contracts/BlurExchange.sol#L57-L58
Please visit the following style guide for more details:
https://docs.soliditylang.org/en/v0.8.14/style-guide.html
Non-assembly Method Available
Automated tools would typically flag a contract using inline-assembly as having high complexity, poor readability and error prone as far as security is concerned. As such, avoid using it where possible. For instance, the following block of codes could be replaced with:
https://github.com/code-423n4/2022-10-blur/blob/main/contracts/BlurExchange.sol#L553-L556
String Concatenation Available
Solidity ^0.8.12 features
string.concat()that can be used instead ofabi.encodePacked(<str>,<str>). Here are some of the instances entailed:https://github.com/code-423n4/2022-10-blur/blob/main/contracts/lib/EIP712.sol#L80 https://github.com/code-423n4/2022-10-blur/blob/main/contracts/lib/EIP712.sol#L117
No Storage Gap for Upgradeable Contracts
Consider adding a storage gap at the end of the upgradeable contract,
BlurExchange.sol, just in case it would entail some child contracts in the future. This would ensure no shifting down of storage in the inheritance chain:Typically, storage gaps are a convention for reserving storage slots in a base contract, allowing future versions of that contract to use up those slots without affecting the storage layout of child contracts. Otherwise, the variable in the child contract might be overwritten by the upgraded implementation code whenever new variables are added to it. This could have unintended and vulnerable consequences to the child contracts.
Please visit the bottom part of article below for further details:
https://docs.openzeppelin.com/upgrades-plugins/1.x/writing-upgradeable
Lines Too Long
Lines in source code are typically limited to 80 characters, but it’s reasonable to stretch beyond this limit when need be as monitor screens theses days are comparatively larger. Considering the files will most likely reside in GitHub that will have a scroll bar automatically kick in when the length is over 164 characters, all code lines and comments should be split when/before hitting this length. Keep line width to max 120 characters for better readability where possible. Here are some of the instances entailed:
https://github.com/code-423n4/2022-10-blur/blob/main/contracts/BlurExchange.sol#L124 https://github.com/code-423n4/2022-10-blur/blob/main/contracts/lib/EIP712.sol#L24 https://github.com/code-423n4/2022-10-blur/blob/main/contracts/lib/EIP712.sol#L27
Use of
ecrecoveris Susceptible to Signature MalleabilityThe built-in EVM pre-compiled
ecrecoveris susceptible to signature malleability due to non-unique v and s (which may not always be in the lower half of the modulo set) values, possibly leading to replay attacks. Despite not exploitable in the current implementation with the adoption of nonces, this could prove a vulnerability when not carefully used elsewhere.Consider using OpenZeppelin’s ECDSA library which has been time tested in preventing this malleability where possible.
Missing NatSpec
Solidity contracts can use a special form of comments, i.e., the Ethereum Natural Language Specification Format (NatSpec) to provide rich documentation for functions, return variables and more. Please visit the following link for further details:
https://docs.soliditylang.org/en/v0.8.16/natspec-format.html
Here are some of the contracts found to be having inadequate NatSpec:
https://github.com/code-423n4/2022-10-blur/blob/main/contracts/interfaces/IMatchingPolicy.sol https://github.com/code-423n4/2022-10-blur/blob/main/contracts/matchingPolicies/StandardPolicyERC721.sol https://github.com/code-423n4/2022-10-blur/blob/main/contracts/matchingPolicies/StandardPolicyERC1155.sol
Devoid of System Documentation and Complete Technical Specification
A system’s design specification and supporting documentation should be almost as important as the system’s implementation itself. Users rely on high-level documentation to understand the big picture of how a system works. Without spending time and effort to create palatable documentation, a user’s only resource is the code itself, something the vast majority of users cannot understand. Security assessments depend on a complete technical specification to understand the specifics of how a system works. When a behavior is not specified (or is specified incorrectly), security assessments must base their knowledge in assumptions, leading to less effective review. Maintaining and updating code relies on supporting documentation to know why the system is implemented in a specific way. If code maintainers cannot reference documentation, they must rely on memory or assistance to make high-quality changes. Currently, the only documentation for Growth DeFi is a single README file, as well as code comments.
Unchecked Return Value for
transferERC20()CallIn
BlurExchange.sol, there is a call toexecutionDelegate.transferERC20()that does not check the return value:https://github.com/code-423n4/2022-10-blur/blob/main/contracts/BlurExchange.sol#L511
It is usually a good practice to add a require statement checking the return value or to use something like
safeTransfer()unless one is sure the given token reverts in case of a failure.Inappropriate Use of Conditional Checks
It is always a good practice to utilize conditional checks correctly and do it as earliest as possible.
The following line of code in
_transferFees()should be refactored to:https://github.com/code-423n4/2022-10-blur/blob/main/contracts/BlurExchange.sol#L482
That way, it would skip calling
_transferTo()whentotalFee=pricewhich is equivalent toamount == 0:https://github.com/code-423n4/2022-10-blur/blob/main/contracts/BlurExchange.sol#L502-L504
Use
safeTransferFrominstead oftransferFromERC721 has both
safeTransferFromandtransferFrom, wheresafeTransferFromthrows an error if the receiving contract's onERC721Received method doesn't return a specific magic number. This will ensure a receiving contract is capable of receiving the token to prevent a permanent loss. In the light of this, consider disablingtransferERC721Unsafe()(whose function logic entailstransferFrom) inExecutionDelegate.solwhere possible.https://github.com/code-423n4/2022-10-blur/blob/main/contracts/ExecutionDelegate.sol#L73-L79
External Call in Loop Could Lead to Denial of Service
Function calls made in unbounded loop are error-prone with potential resource exhaustion as it can trap the contract due to the gas limitations or failed transactions. Here is one of the instances entailed:
https://github.com/code-423n4/2022-10-blur/blob/main/contracts/BlurExchange.sol#L198-L202
Consider bounding the loop where possible to avoid unnecessary gas wastage and denial of service.
Complementary Check for Contract Existence
_exists()inBlurExchange.solcould at most check the existence of a contract address, serving a great way to shun externally owned accounts (EOA). It cannot, however, tell whether or not it is a matching contract address. Consider adding an optional codehash by having the function refactored to:Note:
whatCodeHashwill need to be added to the structOrder.Not Completely Using OpenZeppelin Contracts
OpenZeppelin maintains a library of standard, audited, community-reviewed, and battle-tested smart contracts. Instead of always importing these contracts, Blur Exchange project reimplements them in some cases. This increases the amount of code that the Blur Exchange team will have to maintain and miss all the improvements and bug fixes that the OpenZeppelin team is constantly implementing with the help of the community.
Consider importing the OpenZeppelin contracts instead of reimplementing or copying them. These contracts can be extended to add the extra functionalities required by Blur Exchange. Here is one of the instances entailed:
https://github.com/code-423n4/2022-10-blur/blob/main/contracts/lib/ReentrancyGuarded.sol
block.timestampUnreliable_canSettleOrder()inBlurExchange.solusesblock.timestampas part of its time checks. Nevertheless, timestamps can be slightly altered by miners/validators to favor them in contracts that have logics that depend strongly on them.Consider taking into account this issue and warning the users that such a scenario could happen. If the alteration of timestamps cannot affect the protocol in any way, consider documenting the reasoning and writing tests enforcing that these guarantees will be preserved even if the code changes in the future.
Missing Require Error Message
Consider adding a less than 32 character string message to all require statements just so that a relevant message would be displayed just in case of a revert. Here are some of the instances entailed:
https://github.com/code-423n4/2022-10-blur/blob/main/contracts/BlurExchange.sol#L183 https://github.com/code-423n4/2022-10-blur/blob/main/contracts/BlurExchange.sol#L452