V3.1 audit fixes #255

CostinCarabas · 2024-11-19T22:43:05Z

Reference PR: multiversx/mx-bridge-eth-go#389

github-actions · 2024-11-21T22:29:39Z

Coverage Summary

Totals

	Count	Covered	%
Lines	12161	10524	86.54
Regions	1771	1271	71.77
Functions	895	674	75.31
Instantiations	5312	1877	35.34

Files

Expand

File	Lines	Regions	Functions	Instantiations
/home/runner/.cargo/git/checkouts/mx-contracts-rs-13011bd47afef959/e72c201/contracts/crowdfunding-esdt/src/crowdfunding_esdt.rs	51.56%	57.14%	77.78%	64.00%
/home/runner/.cargo/git/checkouts/mx-contracts-rs-13011bd47afef959/e72c201/contracts/crowdfunding-esdt/src/crowdfunding_esdt_proxy.rs	100.00%	100.00%	100.00%	100.00%
/bridge-proxy/meta/src/main.rs	0.00%	0.00%	0.00%	0.00%
/bridge-proxy/src/bridge-proxy.rs	74.38%	71.43%	81.25%	20.26%
/bridge-proxy/src/config.rs	100.00%	66.67%	100.00%	25.68%
/bridge-proxy/src/events.rs	100.00%	66.67%	100.00%	17.65%
/bridge-proxy/tests/bridge_proxy_blackbox_test.rs	97.26%	90.32%	85.00%	85.00%
/bridged-tokens-wrapper/meta/src/main.rs	0.00%	0.00%	0.00%	0.00%
/bridged-tokens-wrapper/src/dfp_big_uint.rs	50.00%	45.45%	100.00%	40.00%
/bridged-tokens-wrapper/src/events.rs	100.00%	33.33%	100.00%	10.34%
/bridged-tokens-wrapper/src/lib.rs	100.00%	100.00%	100.00%	23.90%
/bridged-tokens-wrapper/tests/bridged_tokens_wrapper_whitebox_test.rs	89.24%	90.32%	89.66%	89.66%
/bridged-tokens-wrapper/tests/scenario_go_test.rs	100.00%	100.00%	100.00%	100.00%
/common/eth-address/src/lib.rs	93.33%	66.67%	88.89%	58.82%
/common/fee-estimator-module/src/lib.rs	100.00%	93.33%	100.00%	33.33%
/common/fee-estimator-module/src/price_aggregator_proxy.rs	6.14%	4.76%	6.67%	13.16%
/common/max-bridged-amount-module/src/lib.rs	100.00%	87.50%	100.00%	33.98%
/common/mock-contracts/mock-bridge-proxy/meta/src/main.rs	0.00%	0.00%	0.00%	0.00%
/common/mock-contracts/mock-bridge-proxy/src/mock_bridge_proxy.rs	100.00%	33.33%	100.00%	3.70%
/common/mock-contracts/mock-bridged-tokens-wrapper/meta/src/main.rs	0.00%	0.00%	0.00%	0.00%
/common/mock-contracts/mock-bridged-tokens-wrapper/src/mock_bridged_tokens_wrapper.rs	100.00%	33.33%	100.00%	5.26%
/common/mock-contracts/mock-esdt-safe/meta/src/main.rs	0.00%	0.00%	0.00%	0.00%
/common/mock-contracts/mock-esdt-safe/src/mock_esdt_safe.rs	25.00%	26.32%	25.00%	16.92%
/common/mock-contracts/mock-multi-transfer-esdt/meta/src/main.rs	0.00%	0.00%	0.00%	0.00%
/common/mock-contracts/mock-multi-transfer-esdt/src/mock_multi_transfer_esdt.rs	100.00%	100.00%	100.00%	17.31%
/common/mock-contracts/mock-multisig/meta/src/main.rs	0.00%	0.00%	0.00%	0.00%
/common/mock-contracts/mock-multisig/src/mock_multisig.rs	100.00%	100.00%	100.00%	35.48%
/common/mock-contracts/mock-price-aggregator/meta/src/main.rs	0.00%	0.00%	0.00%	0.00%
/common/mock-contracts/mock-price-aggregator/src/mock_price_aggregator.rs	100.00%	66.67%	100.00%	25.00%
/common/mock-proxies/src/mock_multisig_proxy.rs	72.41%	62.50%	62.50%	55.56%
/common/sc-proxies/src/bridge_proxy_contract_proxy.rs	67.88%	66.67%	66.67%	55.32%
/common/sc-proxies/src/bridged_tokens_wrapper_proxy.rs	48.04%	47.37%	47.37%	37.74%
/common/sc-proxies/src/crowdfunding_esdt_proxy.rs	0.00%	0.00%	0.00%	0.00%
/common/sc-proxies/src/esdt_safe_proxy.rs	83.59%	64.06%	72.73%	48.94%
/common/sc-proxies/src/multi_transfer_esdt_proxy.rs	70.19%	68.75%	68.75%	46.67%
/common/sc-proxies/src/multisig_proxy.rs	71.44%	52.58%	60.71%	40.28%
/common/storage-module/src/lib.rs	100.00%	88.89%	100.00%	31.54%
/common/token-module/src/lib.rs	89.18%	80.43%	90.48%	34.67%
/common/transaction/src/lib.rs	86.79%	52.94%	70.83%	44.03%
/common/transaction/src/transaction_status.rs	83.33%	66.67%	83.33%	45.10%
/common/tx-batch-module/src/batch_status.rs	66.67%	50.00%	66.67%	20.00%
/common/tx-batch-module/src/lib.rs	95.95%	88.00%	100.00%	28.43%
/common/tx-batch-module/src/tx_batch_mapper.rs	97.14%	93.10%	100.00%	55.00%
/esdt-safe/meta/src/main.rs	0.00%	0.00%	0.00%	0.00%
/esdt-safe/src/lib.rs	82.61%	65.45%	74.36%	27.54%
/esdt-safe/tests/esdt_safe_blackbox_test.rs	99.19%	83.33%	100.00%	100.00%
/esdt-safe/tests/esdt_safe_scenario_rs_test.rs	100.00%	100.00%	100.00%	100.00%
/esdt-safe/tests/scenario_go_test.rs	100.00%	100.00%	100.00%	100.00%
/multi-transfer-esdt/meta/src/main.rs	0.00%	0.00%	0.00%	0.00%
/multi-transfer-esdt/src/lib.rs	85.78%	80.36%	85.71%	26.16%
/multi-transfer-esdt/tests/multi_transfer_blackbox_test.rs	91.84%	78.57%	82.35%	82.35%
/multi-transfer-esdt/tests/multi_transfer_esdt_scenario_rs_test.rs	57.14%	30.00%	30.00%	30.00%
/multi-transfer-esdt/tests/scenario_go_test.rs	30.00%	30.00%	30.00%	30.00%
/multisig/meta/src/main.rs	0.00%	0.00%	0.00%	0.00%
/multisig/src/action.rs	25.00%	22.22%	33.33%	30.77%
/multisig/src/events.rs	100.00%	66.67%	100.00%	29.03%
/multisig/src/lib.rs	89.33%	81.18%	95.24%	36.25%
/multisig/src/multisig_general.rs	98.00%	80.77%	100.00%	46.15%
/multisig/src/queries.rs	65.93%	65.62%	57.89%	15.79%
/multisig/src/setup.rs	99.16%	92.31%	100.00%	31.28%
/multisig/src/storage.rs	100.00%	66.67%	100.00%	33.77%
/multisig/src/user_role.rs	83.33%	72.73%	75.00%	41.67%
/multisig/src/util.rs	96.30%	87.50%	100.00%	44.12%
/multisig/tests/multisig_blackbox_test.rs	100.00%	100.00%	100.00%	100.00%
/multisig/tests/multisig_scenario_rs_test.rs	82.69%	72.73%	72.73%	72.73%
/multisig/tests/scenario_go_test.rs	70.00%	70.00%	70.00%	70.00%
/test-caller/meta/src/main.rs	0.00%	0.00%	0.00%	0.00%
/test-caller/src/test-caller.rs	0.00%	0.00%	0.00%	0.00%

github-actions · 2024-11-21T22:30:57Z

Contract comparison - from e3fed00 to 38538b9

Path	size	has-allocator	has-format
test-caller.wasm	3274	false	without message
esdt-safe.wasm	25531 ➡️ 27249 🔴	false	without message
mock-multi-transfer-esdt.wasm	521	false	none
mock-multisig.wasm	2186	false	none
mock-esdt-safe.wasm	1931 ➡️ 1937 🔴	false	without message
mock-price-aggregator.wasm	1099	false	none
mock-bridge-proxy.wasm	241	false	none
mock-bridged-tokens-wrapper.wasm	942	false	none
multi-transfer-esdt.wasm	16519 ➡️ 16906 🔴	false	without message
bridge-proxy.wasm	13363 ➡️ 14731 🔴	false	without message
bridged-tokens-wrapper.wasm	8781 ➡️ 9039 🔴	false	without message
multisig.wasm	28936 ➡️ 29401 🔴	false	without message

bridge-proxy: refund refactor

The base branch was changed.

dragos-rebegea · 2024-12-02T16:46:22Z

bridge-proxy/src/bridge-proxy.rs

-
-        if call_data.endpoint.is_empty()
+        let non_empty_args = call_data.args.is_some();
+        if (call_data.endpoint.is_empty() && non_empty_args)


what if i send empty endpoint and some arguments?

Then the if statement would be executed and we would

self.finish_execute_gracefully(tx_id); return;

Wrote an integration test for this. Apparently, if I send this RAW SC call data 000000000000000002faf08000 (empty function and 50 mil gas limit) it does not refund the transfer. Good catch @dragos-rebegea

Changed the condition to

if call_data.endpoint.is_empty() self.finish_execute_gracefully(tx_id); return;

Added unit test.

bridge-proxy/src/bridge-proxy.rs

dragos-rebegea · 2024-12-03T11:17:18Z

bridged-tokens-wrapper/scenarios/blacklist_token.scen.json

                "gas": "*",
                "refund": "*"
            }
-        },
-        {
-            "step": "checkState",


this can be kept as it is, onyl the unwrap-token and the expect message is different, right ?

Correct. Added the check

bridged-tokens-wrapper/scenarios/remove_wrapped_token.scen.json

bridged-tokens-wrapper/scenarios/unwrap_token.scen.json

multi-transfer-esdt/src/lib.rs

multi-transfer-esdt/tests/multi_transfer_blackbox_test.rs

dragos-rebegea · 2024-12-03T11:55:04Z

multi-transfer-esdt/tests/multi_transfer_blackbox_test.rs

@@ -1090,7 +1096,7 @@ fn test_unwrap_token_create_transaction_should_work() {
    state
        .world
        .tx()
-        .from(OWNER_ADDRESS)
+        .from(MULTISIG_ADDRESS)


how can a SC call another SC?

Added an endpoint bridgedTokensWrapperDepositLiquidity on multisig.

if a new endpoint was added, we should use it also in tests

removed endpoint.

multisig/src/lib.rs

…t-fixes

…fter-refund bridge-proxy: Clear storages after refund

iulianpascalau · 2024-12-12T07:53:24Z

bridge-proxy/src/bridge-proxy.rs

-
-        if call_data.endpoint.is_empty()
+        let non_empty_args = call_data.args.is_some();
+        if (call_data.endpoint.is_empty() && non_empty_args)


Wrote an integration test for this. Apparently, if I send this RAW SC call data 000000000000000002faf08000 (empty function and 50 mil gas limit) it does not refund the transfer. Good catch @dragos-rebegea

esdt-safe/src/lib.rs

iulianpascalau · 2024-12-12T08:08:17Z

multi-transfer-esdt/src/lib.rs

-                eth_tx.tx_nonce,
-            );
+            // emit events only for non-SC destinations
+            if self.blockchain().is_smart_contract(&eth_tx.to) {


To solve what @dragos-rebegea mentioned and fix the audit finding #9, do you think it would be better to do the following:

emit the event only if the destination address is not a SC

remove the transfer_performed_sc_event and instead emit the transfer_performed_event in the bridge proxy if the call to the SC succeeded

iulianpascalau · 2024-12-12T08:11:37Z

multisig/src/setup.rs

+    multi_transfer_esdt_proxy,
+};
+
+const MAX_BOARD_MEMBERS: usize = 40;


why 40? I would go to a higher value like 100 or something

This is a fix for issue 4 from the Audit document.
We iterate over all board signatures and the call may run out of gas.
Maybe an integration test from your side could help us adjust this value.

iulianpascalau · 2024-12-12T08:13:01Z

multisig/src/setup.rs

+
+    #[only_owner]
+    #[payable("*")]
+    #[endpoint(bridgedTokensWrapperDepositLiquidity)]


why this? The owner of the wrapper is not the multisig contract

iulianpascalau · 2024-12-12T10:00:22Z

multisig/src/lib.rs

+
+        let action_ids_mapper = self.batch_id_to_action_id_mapping(eth_batch_id);
+
+        for act_id in action_ids_mapper.values() {


we should take max values here also

iulianpascalau · 2024-12-12T10:06:27Z

esdt-safe/src/lib.rs

-                transaction_details.refund_info.initial_nonce,
-            );
-        }
+        let transaction_details = self.create_transaction_common(to, OptionalValue::None);


require call from bridge proxy

Added + unit test.

CostinCarabas added 13 commits November 13, 2024 15:47

storage naming snake case -> camel case

21d74ab

multisig: add executed_actions storage

de92e66

multisig: change_quorum improvement

81cdbfb

wrapper: remove dfp_biguint tests

d9d15f1

wrapper: more audit fixes

bd18c31

esdt-safe fix: distribute_fees

70a9a35

esdt-safe: Add failedRefund storage mapper

50657a4

code refactor, compilation, wasm files, Cargo.locks

939ad9d

esdt-safe: more audit fixes

f25b8ef

bridge-proxy: audit fixes

fe6ea58

esdt-safe: fix unit tests

e8ad785

multi-transfer: unit tests fixes

46c4ab2

multisig: code fixes + unit test fixes

2a63507

CostinCarabas added 9 commits November 22, 2024 00:37

bridge-proxy: allow empty endpoint only if empty args

82684b2

clippy, compilation, proxy fixes

c7f9490

bridge-proxy: sc,test fixes

74b68f2

clean commented code

0da9aa3

multi-transfer: batchTransferEsdtToken: refund if TransferRole

a4f51fa

multi-transfer: move_refund_batch_to_safe fix

dab4a14

multisig: clearActionsForBatchId

6c13007

esdt-safe: create_transaction add min_bridge_amount

2f1b424

Merge pull request #256 from multiversx/bridge-proxy-refund-refactor

87441db

bridge-proxy: refund refactor

CostinCarabas changed the title ~~V3.5 audit fixes~~ V3.1 audit fixes Dec 2, 2024

alyn509 previously approved these changes Dec 2, 2024

View reviewed changes

andreiblt1304 previously approved these changes Dec 2, 2024

View reviewed changes

CostinCarabas changed the base branch from feat/v3.5 to feat/v3.1 December 2, 2024 17:03

dragos-rebegea reviewed Dec 3, 2024

View reviewed changes

CostinCarabas added 20 commits December 3, 2024 16:58

Merge remote-tracking branch 'origin/feat/v3.1' into v3.5-audit-fixes

b620abe

Merge remote-tracking branch 'origin/v3.5-audit-fixes' into v3.5-audi…

bba190b

…t-fixes

multisig: add bridgedTokensWrapperDepositLiquidity

05616f4

fixes after review

b560b2e

Fix tests

52f720a

test fixes

bfc081c

bridge-proxy: Refactor refund storage and endpoint

d8637b2

bridge-proxy: tests fixes

2924e4f

multi-transfer: test fixes

7499d01

multi-transfer: remove commented code

65aba3d

bridge-proxy: refund unit test

566a2a0

clippy fixes

7cc699c

multi-transfer: add unit test

f18a048

bridge-proxy: Clear storages after refund

13d34c7

bridge-proxy: Remove cooldown from refund

5f05e2e

Merge pull request #263 from multiversx/bridge-proxy-clear-storages-a…

13f8018

…fter-refund bridge-proxy: Clear storages after refund

multisig: clear_action fix

8f1211f

Merge branch 'feat/v3.1' into v3.5-audit-fixes

3e1d993

multisig: test fixes

e6d3095

bridge-proxy: fix tests & lower gas limit for callback

87f80bd

iulianpascalau reviewed Dec 12, 2024

View reviewed changes

CostinCarabas added 7 commits December 12, 2024 14:40

Fixes after review

ad82d8f

bridged-tokens-wrapper: fix unit test

227e6da

bridge-proxy: add unit test for empty endpoint and non-empty gas limit

4f6a6eb

Add events for finish execute

05515ec

unit tests fixes after reviews applied

7db4577

multi-transfer: refactor batch_transfer

247fb5b

multisig: Fix unit tests

38538b9

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

V3.1 audit fixes #255

V3.1 audit fixes #255

CostinCarabas commented Nov 19, 2024 •

edited by iulianpascalau

Loading

github-actions bot commented Nov 21, 2024 •

edited

Loading

github-actions bot commented Nov 21, 2024 •

edited

Loading

dragos-rebegea Dec 2, 2024

CostinCarabas Dec 4, 2024

iulianpascalau Dec 12, 2024

CostinCarabas Dec 12, 2024 •

edited

Loading

dragos-rebegea Dec 3, 2024

CostinCarabas Dec 12, 2024

dragos-rebegea Dec 3, 2024

CostinCarabas Dec 4, 2024

dragos-rebegea Dec 11, 2024

CostinCarabas Dec 12, 2024

iulianpascalau Dec 12, 2024

iulianpascalau Dec 12, 2024

iulianpascalau Dec 12, 2024

CostinCarabas Dec 12, 2024

iulianpascalau Dec 12, 2024

CostinCarabas Dec 12, 2024

iulianpascalau Dec 12, 2024

CostinCarabas Dec 12, 2024

iulianpascalau Dec 12, 2024

CostinCarabas Dec 12, 2024 •

edited

Loading


		let action_ids_mapper = self.batch_id_to_action_id_mapping(eth_batch_id);

		for act_id in action_ids_mapper.values() {

V3.1 audit fixes #255

Are you sure you want to change the base?

V3.1 audit fixes #255

Conversation

CostinCarabas commented Nov 19, 2024 • edited by iulianpascalau Loading

github-actions bot commented Nov 21, 2024 • edited Loading

Coverage Summary

Totals

Files

github-actions bot commented Nov 21, 2024 • edited Loading

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

CostinCarabas Dec 12, 2024 • edited Loading

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

CostinCarabas Dec 12, 2024 • edited Loading

Choose a reason for hiding this comment

CostinCarabas commented Nov 19, 2024 •

edited by iulianpascalau

Loading

github-actions bot commented Nov 21, 2024 •

edited

Loading

github-actions bot commented Nov 21, 2024 •

edited

Loading

CostinCarabas Dec 12, 2024 •

edited

Loading

CostinCarabas Dec 12, 2024 •

edited

Loading