Smart Contract Security - Notes On Invariants

Support

_Follow along with the video:_ --- ### Notes on Invariants We've already done a tonne and I know at times these concepts can be confusing, but we've seen first hand how powerful a fuzzing tool can be in breaking protocol invariants I briefly mentioned at the end of the last lesson the concept of baking invariants into protocols known as FREI-PI. I think it's important to see what can happen when these considerations aren't made and there's a great [**case study on Euler**](https://www.youtube.com/watch?v=vleHZqDc48M) available by `Tincho` that you should take a moment to watch now. It'll teach you a great deal about the importance of invariants. ### Additional Tools and Tests We exclusively used Foundry in our fuzzing so far, but there are other fuzzing tools available that we didn't go over which are worth checking out. - [**Echidna**](https://github.com/crytic/echidna) - Echidna is a Haskell program designed for fuzzing/property-based testing of Ethereum smart contracts. It uses sophisticated grammar-based fuzzing campaigns based on a contract ABI to falsify user-defined predicates or Solidity assertions. - [**Consensys**](https://diligence.us.auth0.com/login?state=hKFo2SBWT0JUTlRLR1FUUFM1VHFQNVR0Yi1ISWdNMmJCUGFhLaFupWxvZ2luo3RpZNkgUERzWTI1Wkg1bEM0VkMydFFYeG5vcy1fU0dGNjRiN0-jY2lk2SAxdzMzMGc3U1RUUmZFTk9ROHRBSXBPSzhLTTl3ZmdaZg&client=1w330g7STTRfENOQ8tAIpOK8KM9wfgZf&protocol=oauth2&scope=openid%20profile%20email%20read%3Acurrent_user%20enroll%20read%3Aauthenticators%20remove%3Aauthenticators%20offline_access&audience=https%3A%2F%2Ffaas.diligence.tools%2F&redirect_uri=https%3A%2F%2Ffuzzing.diligence.tools&screen_hint=signup&response_type=code&response_mode=query&nonce=fm15RXE2UzNSdlZPS0kyRW5UMkhJalVhM0dUUm5VLVNBUm4xWXhhd2pIZg%3D%3D&code_challenge=06fBFH8ZcFjUxLtj3KtOjpiD_AwxeoWmocBoQFhuEhQ&code_challenge_method=S256&auth0Client=eyJuYW1lIjoiYXV0aDAtcmVhY3QiLCJ2ZXJzaW9uIjoiMS4xMi4xIn0%3D) - Fuzzing as a service, so to speak. This is paid access only, so we won't be covering it here. - **Mutation Testing** - not something we'll cover in this course, but there's a link to more information and things you can try [**here**](https://github.com/Cyfrin/5-t-swap-audit/blob/audit-data/test/mutation/notes.md). Essentially this employs changing parts of the code to see if it breaks tests. - **Differential Testing** - comparative testing vs different iterations of the same code. We'll cover this in more detail in future. Another thing you might want to try is using [**Solodit**](https://solodit.xyz/) to research Weird ERC20s and how they've been identified in previous audits. Let's get on to some manual review now!

Notes On Invariants

Covers security tools like fuzzing, Echidna, and mutation/diff testing to detect issues stresses the importance of testing & learning from history.

Solidity Developer

Smart Contract Security

Course Introduction

Duration: 25min

Section 1: Review

Duration: 1h 18min

Section 2: What is a smart contract audit

Duration: 35min

Section 3: Your First Audit | PasswordStore

Duration: 2h 28min

Section 4: Puppy raffle

Duration: 5h 03min

Section 5: TSwap

Duration: 5h 22min

1. Introduction

Learn to find bugs without code inspection. Topics include fuzzing, AMMs, constant product formula, Uniswap/Curve Finance concepts, and more. Duration: 5min

2. Phase 1: Scoping

Beginning our scoping phase of TSwap a fork of Uniswap V1. Duration: 9min

3. Primer On This Review

Learn about protocol invariance without code. Study DEXs & DeFi Security Reviews. Explore TSWAP Protocol Docs w/ Diagrams & Videos. Duration: 2min

4. What is a DEX?

Decentralized exchanges explained through Uniswap and TSwap Duration: 3min

5. What is an AMM?

We're walked through what an AMM is and how it works in DeFi. Duration: 10min

6. Liquidity Providers

An explanation on liquidity providers and the sources of AMM fees for traders. Duration: 11min

7. How AMMs Work

Patrick further details AMMs and how they function in this quick review on How AMMs Work. Duration: 5min

8. TSwap Recon Continued

TSwap - Create New Pools, Swap Tokens via Multiple Pools, Liquidity Providers. Duration: 3min

9. Invariant & Properties Introduction

In-depth explanation of blockchain protocol invariants and fuzz testing. Examples from ERC-20 & ERC-721 tokens. Duration: 3min

10. Stateful And Stateless Fuzzing

Patrick details the differences between stateful and stateless fuzz testing and how each can be used to break protocol invariants. Duration: 10min

11. Stateless And Stateful Fuzzing Practice

Patrick emphasizes the importance of practice to master stateful and stateless fuzz testing. Duration: 5min

12. Stateless Fuzzing

Patrick walks through stateless fuzzing to catch an invariant break in TSwap! Duration: 9min

13. Where Stateless Fuzzing Fails

Patrick walks through some testing failures and how Foundry can be configured to achieve better results. Duration: 11min

14. Fuzzing Where Method 1 Fails

Introduction to different methods of fuzzing when we have no luck with Method 1. Duration: 18min

15. Stateful Fuzzing Method 2

A second approach to stateful fuzzing by Patrick. Duration: 14min

16. Debugging Fuzz Sequences

Uncover a broken invariant and debug the output sequence of our fuzz testing in this TSwap lesson. Duration: 7min

17. Fuzzing Recap

Stateful/Stateless Fuzzing, Handler Method Importance, ERC20 Exploit, TSWAP Testing & Bugs. Duration: 2min

18. Weird Erc20s

Patrick discusses various ERC20 quirks that can affect a protocol's security including missing return values and fee-on-transfer tokens. Duration: 4min

19. Writing Stateful Fuzz Test Suite

Stateful Fuzzing & Manual Review for TSWAP Bugs Duration: 1min

20. Constant Product Formula Explained

Explore the constant product formula and test it's implementation in TSwap through Fuzz and Unit testing. Duration: 9min

21. Invariant.t.sol

Patrick walks us through the invariant testing we perform on TSwap in invariant.t.sol. Duration: 17min

22. Handler.t.sol

Implementing the deposit function within our testing handler. Duration: 18min

23. Handler Swap Function

Implementing the swap function within our testing handler. Duration: 12min

24. Final Invariant And Tweaks

Comparing Deltas in Handler Test - Quick Guide. Demonstrates how to set up and run an assertion test for deltas in a handler. Duration: 3min

25. Debugging The Fuzzer

Debug Solidity Test Failures with Foundry Duration: 8min

26. One Last Huzzah

Patrick explains how fuzz testing and formal verification methods can be used together to detect bugs in Solidity smart contracts. Duration: 10min

27. Notes On Invariants

Covers security tools like fuzzing, Echidna, and mutation/diff testing to detect issues stresses the importance of testing & learning from history. Duration: 4min

28. Recon: Manual Review Introduction

In this video, Patrick discusses the importance of manual codebase review along with tooling, specifically focusing on TSWAP pool. Duration: 2min

29. Slither

Patrick runs through using Slither on the TSwap repo. Duration: 2min

30. Aderyn

Using Cyfrin's Aderyn to find some non-critical bugs in TSwap! Duration: 2min

31. PoolFactory.sol

In this video, Patrick reviews PoolFactory.sol for TSwap liquidity pools, covering structure, functions, variables, bugs, and best practices. Duration: 6min

32. Manual Review: TSwapPool

Patrick discusses the security review of TSWAP pool in the context of Uniswap V1, He highlights a swap counting bug that breaks protocol invariants Duration: 3min

33. Using The Compiler As Static Analysis Tool

Importance is placed on addressing compiler warnings for potential issues and how they can help us in an audit scenario. Duration: 6min

34. Add Liquidity

Performing a manual review of the addLiquidity function and assessing risks found within! Duration: 8min

35. Remove Liquidity

Withdrawing Liquidity: Burning LP tokens to exchange for underlying money, parameters explained. Duration: 8min

36. swapExactInput

Understanding Swap Exact Input/Output & Protocol Checks in DeFi Duration: 6min

37. swapExactOutput

swapExactOutput lacks slippage protection for sudden price changes. Duration: 3min

38. sellPoolTokens

Sells pool tokens for WETH; business logic error: swap exact output instead of swap exact input. Duration: 2min

39. Checking The Last Few Functions

Patrick quickly skims the final few functions for vulnerabilities in TSwap. Duration: 2min

40. Phase 4: Reporting

Quick overview of reporting process - finding reports & appropriate tags. Multiple passes suggested for thoroughness. Duration: 5min

41. Reporting: Missing Deadline

TSWAP pool deposit function vulnerability. Deadline parameter accepted but unused, allowing MEV attacks during unfavourable market conditions. Medium impact. Duration: 4min

42. Reporting Continued

Patrick continues by showing how to report issues with examples and proofs to fix them. Duration: 10min

43. Reporting: No Slippage Protection

Slippage Protection Lacking in SwapExactOutput, Add Max Input for Safety. Patrick elaborates with a Proof-Of-Concept Scenario. Duration: 8min

44. Reporting: sellPoolTokens

Patrick highlights flawed SellPool tokens calculation. Recommends using swapExactInput & adding a MinWethToReceive w/Deadline to prevent exploitation. Duration: 4min

45. Reporting: Invariant Break & PoC

In this video, Patrick explains how to create a unit test that replicates a sequence found using fuzz testing to break an invariant. Duration: 9min

46. Reporting: Weird Erc20

Uniswap V1, TSWAP pool issues, breaks protocol invariance. Explore, and report weird ERC20s, DeFi vulnerabilities. Duration: 4min

47. Creating Pdf For Your Portfolio

Creating a PDF of your audit report to add to your GitHub portfolio! Show case your achievements! Duration: 4min

48. Recap

Recap things covered in this section. Common issues in DeFi: liquidity, price manipulation, governance attacks. Duration: 8min

49. Exercises

Learn smart contract security testing by coding a fuzz test, discover reentrancy attacks, share insights on Twitter. Upcoming sections explained. Duration: 3min

Section 6: Thunder Loan

Duration: 4h 33min

Section 7: Boss Bridge

Duration: 2h 01min

Section 8: MEV & Governance

Duration: 1h 40min