- Total Prize Pool: $100,000 in USDC
- HM awards: $81,600 in USDC
- QA awards: $3,400 in USDC
- Judge awards: $8,750 in USDC
- Validator awards: $5,750 in USDC
- Scout awards: $500 in USDC
- Join C4 Discord to register
- Submit findings using the C4 form
- Read our guidelines for more details
- Starts July 25, 2024 20:00 UTC
- Ends August 15, 2024 20:00 UTC
The 4naly3er report can be found here.
Note for C4 wardens: Anything included in this Automated Findings / Publicly Known Issues
section is considered a publicly known issue and is ineligible for awards.
All of the previous findings from the previous audit reports from Watchpug
Loop - boosted restaking yield and points
Loop is a novel lending protocol that allows
- Loopers to get boosted exposure towards restaking yield and points
- Lenders to earn yield on their ETH
- LOOP LPs to participate in DAO governance and earn platform fees
- Previous audits:
- Documentation: https://docs.loopfi.xyz/
- Website: https://www.loopfi.xyz/
- X/Twitter: https://twitter.com/loopfixyz
- Discord: https://discord.gg/mVqf2Q5Whg
Question | Answer |
---|---|
ERC20 used by the protocol | PoolV3 will use WETH (0xc02aaa39b223fe8d0a0e5c4f27ead9083c756cc2) CDPVault will use PendleLP tokens (e.g: 0x464F5A15Aca6Fe787Cf54fCF1E8AF6207939d297, 0xb9e8bb1105382b018c6adfd95fd9272542cc1776) Pool and swap actions can use any ERC-20 to perform swaps |
Test coverage | 69% |
ERC721 used by the protocol | None |
ERC777 used by the protocol | None |
ERC1155 used by the protocol | None |
Chains the protocol will be deployed on | Ethereum |
Question | Answer |
---|---|
Missing return values | Out of scope |
Fee on transfer | Out of scope |
Balance changes outside of transfers | Out of scope |
Upgradeability | Out of scope |
Flash minting | Out of scope |
Pausability | Out of scope |
Approval race protections | Out of scope |
Revert on approval to zero address | Out of scope |
Revert on zero value approvals | Out of scope |
Revert on zero value transfers | Out of scope |
Revert on transfer to the zero address | Out of scope |
Revert on large approvals and/or transfers | Out of scope |
Doesn't revert on failure | Out of scope |
Multiple token addresses | Out of scope |
Low decimals ( < 6) | Out of scope |
High decimals ( > 18) | Out of scope |
Blocklists | Out of scope |
Question | Answer |
---|---|
Enabling/disabling fees (e.g. Blur disables/enables fees) | No |
Pausability (e.g. Uniswap pool gets paused) | No |
Upgradeability (e.g. Uniswap gets upgraded) | No |
N/A
Debt >= Borrowed
- Leverage system
- Interest and quotas debt and repayment
- Liquidations
Admin roles
N/A
git clone --recurse https://github.com/code-423n4/2024-07-loopfi.git
cd 2024-07-loopfi
cp example.env .env
Fill the MAINNET_RPC_URL
field with your own Alchemy RPC URL in the .env
file (or try to use a public one like https://eth.llamarpc.com)
forge test
forge coverage
See scope.txt
File | Logic Contracts | Interfaces | nSLOC | Purpose | Libraries used |
---|---|---|---|---|---|
/src/CDPVault.sol | 1 | 1 | 426 | @openzeppelin/contracts/access/AccessControl.sol @openzeppelin/contracts/token/ERC20/IERC20.sol @openzeppelin/contracts/token/ERC20/utils/SafeERC20.sol @gearbox-protocol/core-v3/contracts/interfaces/IPoolV3.sol @openzeppelin/contracts/utils/math/SafeCast.sol @gearbox-protocol/core-v3/contracts/libraries/CreditLogic.sol @gearbox-protocol/core-v3/contracts/libraries/QuotasLogic.sol @gearbox-protocol/core-v3/contracts/interfaces/IPoolQuotaKeeperV3.sol |
|
/src/Flashlender.sol | 1 | **** | 57 | @openzeppelin/contracts/security/ReentrancyGuard.sol @openzeppelin/contracts/token/ERC20/IERC20.sol @gearbox-protocol/core-v3/contracts/interfaces/IPoolV3.sol |
|
/src/PoolV3.sol | 1 | **** | 465 | @openzeppelin/contracts/token/ERC20/utils/SafeERC20.sol @openzeppelin/contracts/token/ERC20/IERC20.sol @openzeppelin/contracts/interfaces/IERC4626.sol @openzeppelin/contracts/interfaces/IERC20Metadata.sol @openzeppelin/contracts/token/ERC20/ERC20.sol @openzeppelin/contracts/token/ERC20/extensions/ERC4626.sol @openzeppelin/contracts/token/ERC20/extensions/ERC20Permit.sol @openzeppelin/contracts/utils/math/Math.sol @openzeppelin/contracts/utils/math/SafeCast.sol @openzeppelin/contracts/utils/structs/EnumerableSet.sol @gearbox-protocol/core-v3/contracts/interfaces/IAddressProviderV3.sol @gearbox-protocol/core-v3/contracts/interfaces/ICreditManagerV3.sol @gearbox-protocol/core-v3/contracts/interfaces/ILinearInterestRateModelV3.sol @gearbox-protocol/core-v3/contracts/interfaces/IPoolQuotaKeeperV3.sol @gearbox-protocol/core-v3/contracts/interfaces/IPoolV3.sol @gearbox-protocol/core-v3/contracts/libraries/CreditLogic.sol @gearbox-protocol/core-v3/contracts/traits/ACLNonReentrantTrait.sol @gearbox-protocol/core-v3/contracts/traits/ContractsRegisterTrait.sol @gearbox-protocol/core-v2/contracts/libraries/Constants.sol @gearbox-protocol/core-v3/contracts/interfaces/IExceptions.sol |
|
/src/Silo.sol | 1 | **** | 20 | @openzeppelin/contracts/token/ERC20/IERC20.sol @openzeppelin/contracts/token/ERC20/utils/SafeERC20.sol |
|
/src/StakingLPEth.sol | 1 | **** | 90 | @openzeppelin/contracts/token/ERC20/extensions/ERC4626.sol @openzeppelin/contracts/security/ReentrancyGuard.sol @openzeppelin/contracts/access/Ownable.sol src/Silo.sol |
|
/src/VaultRegistry.sol | 1 | **** | 60 | @openzeppelin/contracts/access/AccessControl.sol | |
/src/oracle/BalancerOracle.sol | 1 | **** | 91 | @openzeppelin/contracts-upgradeable/proxy/utils/UUPSUpgradeable.sol @openzeppelin/contracts-upgradeable/access/AccessControlUpgradeable.sol @openzeppelin/contracts/token/ERC20/ERC20.sol |
|
/src/oracle/ChainlinkOracle.sol | 1 | **** | 53 | @openzeppelin/contracts-upgradeable/proxy/utils/UUPSUpgradeable.sol @openzeppelin/contracts-upgradeable/access/AccessControlUpgradeable.sol |
|
/src/proxy/BaseAction.sol | 1 | **** | 17 | ||
/src/proxy/ERC165Plugin.sol | 1 | **** | 12 | @openzeppelin/contracts/token/ERC1155/utils/ERC1155Holder.sol @openzeppelin/contracts/token/ERC721/utils/ERC721Holder.sol prb-proxy/interfaces/IPRBProxyPlugin.sol |
|
/src/proxy/PoolAction.sol | 1 | **** | 147 | @openzeppelin/contracts/token/ERC20/utils/SafeERC20.sol @openzeppelin/contracts/token/ERC20/IERC20.sol |
|
/src/proxy/PositionAction.sol | 1 | **** | 303 | @openzeppelin/contracts/token/ERC20/IERC20.sol @openzeppelin/contracts/token/ERC20/utils/SafeERC20.sol @gearbox-protocol/core-v3/contracts/interfaces/IPoolV3.sol |
|
/src/proxy/PositionAction20.sol | 1 | **** | 30 | @openzeppelin/contracts/token/ERC20/IERC20.sol @openzeppelin/contracts/token/ERC20/utils/SafeERC20.sol |
|
/src/proxy/PositionAction4626.sol | 1 | **** | 77 | @openzeppelin/contracts/interfaces/IERC20.sol @openzeppelin/contracts/interfaces/IERC4626.sol @openzeppelin/contracts/token/ERC20/utils/SafeERC20.sol |
|
/src/proxy/SwapAction.sol | 1 | **** | 176 | @openzeppelin/contracts/token/ERC20/utils/SafeERC20.sol @openzeppelin/contracts/token/ERC20/IERC20.sol |
|
/src/proxy/TransferAction.sol | 1 | **** | 51 | @openzeppelin/contracts/token/ERC20/IERC20.sol @openzeppelin/contracts/token/ERC20/extensions/draft-IERC20Permit.sol @openzeppelin/contracts/token/ERC20/utils/SafeERC20.sol permit2/interfaces/ISignatureTransfer.sol |
|
/src/quotas/GaugeV3.sol | 1 | **** | 160 | @gearbox-protocol/core-v3/contracts/interfaces/IGaugeV3.sol @gearbox-protocol/core-v3/contracts/interfaces/IGearStakingV3.sol @gearbox-protocol/core-v3/contracts/interfaces/IPoolQuotaKeeperV3.sol @gearbox-protocol/core-v3/contracts/interfaces/IPoolV3.sol @gearbox-protocol/core-v3/contracts/traits/ACLNonReentrantTrait.sol @gearbox-protocol/core-v3/contracts/interfaces/IExceptions.sol |
|
/src/quotas/PoolQuotaKeeperV3.sol | 1 | **** | 130 | @openzeppelin/contracts/utils/structs/EnumerableSet.sol @gearbox-protocol/core-v3/contracts/traits/ACLNonReentrantTrait.sol @gearbox-protocol/core-v3/contracts/traits/ContractsRegisterTrait.sol @gearbox-protocol/core-v3/contracts/libraries/QuotasLogic.sol @gearbox-protocol/core-v3/contracts/interfaces/IPoolV3.sol src/interfaces/IPoolQuotaKeeperV3.sol @gearbox-protocol/core-v3/contracts/interfaces/IGaugeV3.sol @gearbox-protocol/core-v3/contracts/interfaces/ICreditManagerV3.sol @gearbox-protocol/core-v2/contracts/libraries/Constants.sol @gearbox-protocol/core-v3/contracts/interfaces/IExceptions.sol |
|
/src/quotas/QuotasLogic.sol | 1 | **** | 28 | @openzeppelin/contracts/utils/math/SafeCast.sol @gearbox-protocol/core-v2/contracts/libraries/Constants.sol |
|
/src/reward/ChefIncentivesController.sol | 1 | **** | 576 | @openzeppelin/contracts/token/ERC20/IERC20.sol @openzeppelin/contracts/token/ERC20/utils/SafeERC20.sol @openzeppelin/contracts-upgradeable/proxy/utils/Initializable.sol @openzeppelin/contracts-upgradeable/access/OwnableUpgradeable.sol @openzeppelin/contracts-upgradeable/security/PausableUpgradeable.sol |
|
/src/reward/EligibilityDataProvider.sol | 1 | **** | 124 | @openzeppelin/contracts-upgradeable/access/OwnableUpgradeable.sol | |
/src/reward/MultiFeeDistribution.sol | 1 | **** | 872 | @openzeppelin/contracts/token/ERC20/IERC20.sol @openzeppelin/contracts/token/ERC20/extensions/IERC20Metadata.sol @openzeppelin/contracts/token/ERC20/utils/SafeERC20.sol @openzeppelin/contracts-upgradeable/proxy/utils/Initializable.sol @openzeppelin/contracts-upgradeable/access/OwnableUpgradeable.sol @openzeppelin/contracts-upgradeable/security/PausableUpgradeable.sol |
|
/src/reward/RecoverERC20.sol | 1 | **** | 11 | @openzeppelin/contracts/token/ERC20/IERC20.sol @openzeppelin/contracts/token/ERC20/utils/SafeERC20.sol |
|
/src/utils/Math.sol | **** | **** | 228 | ||
/src/utils/Pause.sol | 1 | **** | 19 | @openzeppelin/contracts/access/AccessControl.sol @openzeppelin/contracts/security/Pausable.sol |
|
/src/utils/Permission.sol | 1 | **** | 26 | ||
/src/vendor/AggregatorV3Interface.sol | **** | 1 | 3 | ||
/src/vendor/AuraVault.sol | 1 | **** | 194 | @openzeppelin/contracts/token/ERC20/ERC20.sol @openzeppelin/contracts/interfaces/IERC20.sol @openzeppelin/contracts/token/ERC20/extensions/ERC4626.sol @openzeppelin/contracts/interfaces/IERC4626.sol @openzeppelin/contracts/token/ERC20/extensions/ERC20Permit.sol @openzeppelin/contracts/token/ERC20/utils/SafeERC20.sol @openzeppelin/contracts/access/AccessControl.sol @openzeppelin/contracts/utils/math/Math.sol |
|
/src/vendor/IAuraPool.sol | **** | 1 | 3 | ||
/src/vendor/IBalancerVault.sol | **** | 1 | 52 | ||
/src/vendor/ICurvePool.sol | **** | 1 | 3 | ||
/src/vendor/IPriceOracle.sol | **** | 1 | 17 | ||
/src/vendor/IUniswapV3Router.sol | **** | 1 | 33 | ||
/src/vendor/IWeightedPool.sol | **** | 1 | 3 | ||
/src/vendor/Imports.sol | **** | **** | 5 | prb-proxy/PRBProxyRegistry.sol @openzeppelin/contracts/proxy/transparent/TransparentUpgradeableProxy.sol @openzeppelin/contracts/proxy/transparent/ProxyAdmin.sol permit2/interfaces/IAllowanceTransfer.sol |
|
Totals | 26 | 8 | 4562 |
Files added to the scope after the start of the contest:
File | SLOC |
---|---|
/src/oracle/PendleLPOracle.sol | 75 |
/src/proxy/PositionActionPendle.sol | 44 |
Totals | 119 |
See out_of_scope.txt
File |
---|
./src/interfaces/IBuffer.sol |
./src/interfaces/ICDM.sol |
./src/interfaces/ICDPVault.sol |
./src/interfaces/ICDPVault_Deployer.sol |
./src/interfaces/IFlashlender.sol |
./src/interfaces/IInterestRateModel.sol |
./src/interfaces/IMinter.sol |
./src/interfaces/IOracle.sol |
./src/interfaces/IPause.sol |
./src/interfaces/IPermission.sol |
./src/interfaces/IPoolQuotaKeeperV3.sol |
./src/interfaces/IPoolV3.sol |
./src/interfaces/IStablecoin.sol |
./src/interfaces/IVaultRegistry.sol |
./src/reward/interfaces/IBountyManager.sol |
./src/reward/interfaces/IChefIncentivesController.sol |
./src/reward/interfaces/IEligibilityDataProvider.sol |
./src/reward/interfaces/IFeeDistribution.sol |
./src/reward/interfaces/IMintableToken.sol |
./src/reward/interfaces/IMultiFeeDistribution.sol |
./src/reward/interfaces/IPriceProvider.sol |
./src/reward/interfaces/IWETH.sol |
./src/reward/interfaces/LockedBalance.sol |
./src/reward/interfaces/balancer/IWeightedPoolFactory.sol |
./src/reward/libraries/RecoverERC20.sol |
./src/test/MockOracle.sol |
./src/test/MockVoter.sol |
./src/test/PoolQuotaKeeperMock.sol |
./src/test/TestBase.sol |
./src/test/integration/IntegrationTestBase.sol |
./src/test/integration/PoolAction.t.sol |
./src/test/integration/PositionAction20.lever.t.sol |
./src/test/integration/PositionAction20.t.sol |
./src/test/integration/SwapAction.t.sol |
./src/test/integration/Tokenomics.t.sol |
./src/test/integration/TransferAction.t.sol |
./src/test/unit/BalancerOracle.t.sol |
./src/test/unit/CDPVault.t.sol |
./src/test/unit/ChainlinkOracle.t.sol |
./src/test/unit/ChefIncentivesController.t.sol |
./src/test/unit/EligibilityDataProvider.t.sol |
./src/test/unit/Flashlender.t.sol |
./src/test/unit/Math.t.sol |
./src/test/unit/MultiFeeDistribution.t.sol |
./src/test/unit/Pause.t.sol |
./src/test/unit/Permission.t.sol |
./src/test/unit/Proxy.t.sol |
./src/test/unit/StakingLP.t.sol |
./src/test/utils/PermitMaker.sol |
Totals: 49 |
...and everything not explicitly marked in scope
Employees of LoopFi and employees' family members are ineligible to participate in this audit.