Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Izumi lp integration #402

Open
wants to merge 26 commits into
base: main
Choose a base branch
from
Open

Izumi lp integration #402

wants to merge 26 commits into from

Conversation

zhoujia6139
Copy link
Contributor

Security Checklist

  • 1. Re-Entrancy
  • 2. Arithmetic Over/Under Flows
  • 3. Unexpected Ether
  • 4. Delegatecall
  • 5. Default Visibilities
  • 6. Entropy Illusion
  • 7. External Contract Referencing
  • 8. Short Address/Parameter Attack (off chain)
  • 9. Unchecked CALL Return Values
  • 10. Race Conditions / Front Running
  • 11. Denial Of Service (DOS)
  • 12. Block Timestamp Manipulation
  • 13. Constructors with Care
  • 14. Uninitialized Storage Pointers
  • 15. Floating Points and Precision
  • 16. Tx.Origin Authentication
  • 17. Address.isContract Re-Entrancy via Constructor

⚠️ NOTES ⚠️

Make sure to think about each of these exploits in this PR.

@zhoujia6139 zhoujia6139 requested a review from a team as a code owner August 14, 2023 08:52
@zhoujia6139 zhoujia6139 marked this pull request as draft August 14, 2023 08:52
@zhoujia6139 zhoujia6139 marked this pull request as ready for review August 15, 2023 05:32
@zhoujia6139 zhoujia6139 requested a review from a team as a code owner August 15, 2023 05:32
billyz9611
billyz9611 reviewed Aug 21, 2023
View reviewed changes
contracts/protocol/tokenization/NTokenLiquidity.sol
amount1Min
);

// refund unused tokens
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

if token0 & token1 are not WETH, we need to refund ETH to user when msg.value > 0.

@zhoujia6139 zhoujia6139 mentioned this pull request Aug 28, 2023
Closed
17 tasks
GopherJ
GopherJ reviewed Sep 5, 2023
View reviewed changes
contracts/protocol/tokenization/NTokenLiquidity.sol
require(token0 == weth || token1 == weth, Errors.INVALID_AMOUNT);
token0IsETH = (token0 == weth);
token1IsETH = (token1 == weth);
}
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

there are many duplicated code here, I think we can declare variable to represent ethToken, ethAmount

GopherJ
GopherJ reviewed Sep 5, 2023
View reviewed changes
contracts/protocol/tokenization/NTokenLiquidity.sol
} else {
IERC20(token0).safeTransfer(payer, refund0);
}
}
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

same here I think we can remove duplicated code

@GopherJ
Copy link
Contributor

GopherJ commented Sep 5, 2023

I think upgrade script should also be fixed by adding Izumi LP

GopherJ
GopherJ reviewed Sep 5, 2023
View reviewed changes
contracts/interfaces/IXTokenType.sol
@@ -25,6 +25,7 @@ enum XTokenType {
NTokenOtherdeed,
NTokenStakefish,
NTokenChromieSquiggle,
NTokenIZUMILp,
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

this will break PTokenStKSM which is deployed on moonbeam

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@GopherJ GopherJ GopherJ left review comments

@billyz9611 billyz9611 billyz9611 left review comments

At least 1 approving review is required to merge this pull request.

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@zhoujia6139 @GopherJ @billyz9611