Nibiru

Nibiru Chain is a smart contract ecosystem with a high-performance, EVM-equivalent execution layer (Nibiru EVM).

  • Start date11 Nov 2024
  • End date25 Nov 2024
  • Total awards$70,000 in USDC
  • Duration14 days

Nibiru audit details

  • Total Prize Pool: $70,000 in USDC
    • HM awards: $55,800 in USDC
    • QA awards: $2,300 in USDC
    • Judge awards: $6,800 in USDC
    • Validator awards: $4,600 USDC
    • Scout awards: $500 in USDC
  • Read our guidelines for more details
  • Starts November 11, 2024 20:00 UTC
  • Ends November 25, 2024 20:00 UTC

Automated Findings / Publicly Known Issues

Note for C4 wardens: Anything included in this Automated Findings / Publicly Known Issues section is considered a publicly known issue and is ineligible for awards.

Overview

Nibiru Chain is a breakthrough Layer 1 blockchain and smart contract ecosystem providing superior throughput, improved security, and a high-performance EVM execution layer. Nibiru aims to be the most developer-friendly and user-friendly smart contract ecosystem, leading the charge toward mainstream Web3 adoption by innovating at each layer of the stack: dApp development, scalable blockchain data indexing, consensus optimizations, a comprehensive developer toolkit, and composability across multiple VMs.

Links


Scope

See scope.txt

Files in scope

Filecode
x/evm/keeper/grpc_query.go565
x/evm/keeper/msg_server.go494
x/evm/statedb/statedb.go383
eth/rpc/backend/blocks.go373
x/evm/precompile/funtoken.go373
eth/rpc/backend/tx_info.go352
eth/rpc/rpcapi/eth_api.go305
eth/rpc/backend/call_tx.go258
x/evm/precompile/wasm.go243
eth/rpc/backend/utils.go230
eth/rpc/backend/tracing.go204
x/evm/precompile/wasm_parse.go198
x/evm/statedb/journal.go185
x/evm/statedb/state_object.go185
x/evm/keeper/erc20.go175
eth/rpc/backend/account_info.go170
x/evm/keeper/statedb.go152
x/evm/keeper/evm_state.go139
x/evm/keeper/gas_fees.go138
eth/rpc/backend/chain_info.go137
x/evm/precompile/precompile.go136
x/evm/keeper/bank_extension.go135
app/evmante/evmante_validate_basic.go119
x/evm/keeper/funtoken_from_erc20.go118
app/evmante/evmante_gas_consume.go109
x/evm/keeper/keeper.go102
x/evm/keeper/call_contract.go96
x/evm/precompile/oracle.go92
app/evmante/evmante_can_transfer.go74
x/evm/keeper/vm_config.go72
x/evm/statedb/access_list.go65
x/evm/keeper/funtoken_from_coin.go64
eth/rpc/backend/node_info.go60
x/evm/keeper/funtoken_state.go60
app/evmante/evmante_increment_sender_seq.go58
app/evmante/evmante_verify_eth_acc.go57
app/evmante/evmante_mempool_fees.go56
app/evmante/evmante_sigverify.go53
eth/rpc/backend/backend.go46
x/evm/precompile/errors.go45
app/evmante/evmante_emit_event.go39
app/evmante/evmante_setup_ctx.go35
x/evm/statedb/config.go27
x/evm/statedb/debug.go24
x/evm/keeper/precompiles.go22
app/evmante/evmante_handler.go21
x/evm/keeper/msg_update_params.go21
x/evm/statedb/interfaces.go19
x/evm/keeper/hooks.go17
app/evmante/interfaces.go9
SUM:7110
Main Scope
x/evm/keeper
x/evm/precompile
x/evm/statedb
app/evmante
eth/rpcapi/eth_api.go
eth/rpc/backend

*Ignore .pb.go protobuf files

Important Tests
evm-e2e
x/evm/evmtest

Files out of scope

See the files in out_of_scope.txt

Scoping Q & A

General questions

QuestionAnswer
ERC20 used by the protocolAny (all possible ERC20s)
ERC721 used by the protocolN/A
ERC777 used by the protocolN/A
ERC1155 used by the protocolN/A
Chains the protocol will be deployed onNibiru

ERC20 token behaviors in scope

External integrations (e.g., Uniswap) behavior in scope

QuestionAnswer
Enabling/disabling fees (e.g. Blur disables/enables fees)No
Pausability (e.g. Uniswap pool gets paused)No
Upgradeability (e.g. Uniswap gets upgraded)Yes

EIP compliance checklist

QuestionAnswer
x/evm/embeds/contracts/ERC20Minter.solMust be a valid, ownable ERC20. We're importing from OpenZeppelin and don't expect there to be issues based on the test suite.
Contracts registered with a FunToken mapping to a Bank Coin on NibiruMust be valid ERC20s

Additional context

Main invariants

  1. NIBI is "ether" on the network, and microNIBI (written "unibi") is the smallest unit of NIBI. The following invariant holds true: 1 NIBI == 10^{18} wei == 10^{6} unibi. Note that this implies we cannot transfer values smaller than 10^{12} wei.

  2. All of the standard invariants of the EVM StateDB should work exactly as they do on Ethereum mainnet.

  3. Account state is not held by a particular VM, since an address is actually just a byte array. Thus, all accounts have both a nibi-prefixed Bech32 address and Ethereum hexadecimal address, each derived from the same bytes.

  4. Any bank coin on Nibiru can be used to create a canonical ERC20 representation, for which the EVM itself (the module account) will be the owner.

  5. Similar to (3), any ERC20 on Nibiru can be used to create a canonical bank coin representation. The owner of the ERC20 is unbounded, while only the EVM Module account can mint the bank coin representation produced.

Attack ideas (where to focus for bugs)

  • When users of Nibiru interact over external clients like ethers.js and wagmi, is the behavior familiar like what developers would expect on the Ethereum L1 or networks like BSC, Base, or Arbitrum?
  • Does the Ethereum JSON-RPC interface for Nibiru operate as expected in terms of transaction receipts, contract deployment and interactions, and how error messages are displayed?

All trusted roles in the protocol

Nibiru EVM has a few cases of special permissions: the EVM Module, the proof of stake governance authority, and the owner of an ERC20 as it pertains to the FunToken mapping mechanism:

RoleDescription
EVM Module- In the content of the FunToken mapping mechanism, the EVM itself is a Module Account with the sole authority to call burnFromAuthority from the evm/embeds/contracts/ERC20Minter.sol contracts that get deployed to represent Bank Coins as ERC20s.<br>- When a bank coin is created via “createFunTokenFromERC20”, the EVM Module is the only authority able to mint that coin.
Governance AuthorityA governance proposal can be submitted to update the EVM module parameters, such as the “CreateFunTokenFee”.
Wasm PrecompileWhen interacting with the Wasm VM from inside the EVM, the sender of the Wasm transaction message must be the sender of the EVM transaction message (the transaction signer). This allows us to cleanly compose the two VMs without complicating security checks.

Describe any novel or unique curve logic or mathematical models implemented in the contracts

N/A

Running tests

To run the local network, please install the Nibiru CLI:

git clone --recurse https://github.com/code-423n4/2024-11-nibiru.git
cd 2024-11-nibiru

cargo install just
just # see all commands

just install
just build
just localnet # Run a local network

cd evm-e2e
cp .env_sample .env
just install
just test # Runs the EVM end to end tests suite with ethers.js

Miscellaneous

Employees of Nibiru and employees' family members are ineligible to participate in this audit.

Code4rena's rules cannot be overridden by the contents of this README. In case of doubt, please check with C4 staff.