Submission Details
Severity:
Missing `address(0)` check
Summary
There is not check to prevent initializing i_dsc with the null address
Vulnerability Details
The i_dsc variable is set as immutable. Therefore, it is important to verify that we are not initializing it with the null address .
82: DecentralizedStableCoin private immutable i_dsc;
112: constructor(address[] memory tokenAddresses, address[] memory priceFeedAddresses, address dscAddress) {
...
122: i_dsc = DecentralizedStableCoin(dscAddress);
}
Impact
Any interactions with i_dsc would result in runtime exceptions or revert transactions.
Tools Used
Virtual Studio Code
Foundry
Recommendations
Consider adding an address(0) check for immutable variables.
112: constructor(address[] memory tokenAddresses, address[] memory priceFeedAddresses, address dscAddress) {
...
+122: require(dscAddress != address(0), "DSC address could not be 0.)");
123: i_dsc = DecentralizedStableCoin(dscAddress);
}
To save gas, this check could also be done in assembly:
112: constructor(address[] memory tokenAddresses, address[] memory priceFeedAddresses, address dscAddress) {
...
+122: assembly {
+123: if iszero(dscAddress) {
+124: mstore(0x00, "DSC address could not be 0.")
+125: revert(0x00, 0x20)
+126: }
127: i_dsc = DecentralizedStableCoin(dscAddress);
}
This should save **6 gas** per call
Prize pool breakdown
Total prize
15,000 USDC
nSLOC
23664 USDC / LOC
14,000 USDC
1,000 USDC
Live
The contest is live. Earn rewards by submitting a finding.
Appeals
This is your time to appeal against judgements on your submissions.
Appeals Review
Appeals are being carefully reviewed by our judges.