In this document we explain the strategies used to avoid common attacks in the developpment of the solidity smart contracts of this project. The article Solidity Security: Comprehensive list of known attack vectors and common anti-patterns is used as a base structure.
In this release of the project ther is no logic involving tranferring value between addresses. Nevertheless, We tried as much as possible to respect the best practices to avoid reentrancy as placing any code that performs external calls as the last operation. Example :
-
The call to
computeCSCIndexfunction in CSFeature.sol. -
The call to
killin theremoveFeaturefunction in CSFeatureRegistry.sol
To guard against under/overflow vulnerabilities we use the openZeppelin SafeMath mathematical library for the state variable featuresCount (uint256) in the CSFeatureRegistry.sol.
In this release of the project ther is no logic based on this.balance.
Nevertheless, as the CSFeature.sol contract implement a selfdestruct function, even if someone send ether to it, this contract will refund all gathered Ether to the its owner.
In this release of the project we don't use delegatecall and we used the stateless library keyword to implement the CSGeometryLib.sol.
The visibility for all the contracts functions and state variables of this project contracts are clearly specified.
In this release of the project we don't rely on any random variable.
In this release of the project we don't make calls to any untrusted externall contract.
To avoid this type of attack it is advised to order correctly the parameter of the functions as padding only occurs at the end. TODO should check my contracts and well understand the problem.
In this release of the projec we don't use the CALL low-level function.
In this release of the project we believe that this type of attack is not valuable to any potenital attacker.
In this release of the project :
- no function loop through data structures that are artificially manipulated by external users;
- for LAParcel contract we have an array of admins(the creator and the LAParcleRegistry contract) that have acces to key state variables and functions.
In this release of the project we don't rely on timestamp.
All the contracts of this project uses the constructor keyword.
All the contracts of this project targets the 0.5.x version of the solidity compiler in whichthe use of memory and storage keywords are mandatory.
In this release of the project we don't use fixed points values.
In this release of the project we don't use tx.Origin.
Having some trouble using the command line analysis truffle run verify, the MythX Visual Studio Code was used instead.
The full report highlight two low severity issues described bellow.
Detected Issues
| 0 High | 0 Medium | 2 Low |
|---|
| ID | Severity | Name | File | Location |
|---|---|---|---|---|
| SWC-103 | Low | Floating Pragma | CSFeatureRegistry.sol | L: 9 C: 0 |
| SWC-108 | Low | State Variable Default Visibility | CSFeatureRegistry.sol | L: 30 C: 10 |
As a correction, the line of code n° 30 was updated in the commit 08231bb as follow :
uint256 internal featuresCount = 0;Desperate from using mythril, the slither tool was used and returns the following results.
TODO