supernova - Confusion in gap size #146

github-actions · 2023-02-20T21:43:50Z

supernova

low

Confusion in gap size

Summary

According to the comments

Reserve extra slots in the storage layout for future upgrades.
     *         A gap size of 41 was chosen here, so that the first slot used in a child contract
     *         would be a multiple of 50.

Vulnerability Detail

But actually gap is provided for 42 instead of 41 mentioned above . This can lead to presumptions on the minds of the dev that the first slot of the child contract is a multiple of 50 , when it is not .

Impact

Code Snippet

https://github.com/sherlock-audit/2023-01-optimism/blob/main/optimism/packages/contracts-bedrock/contracts/universal/CrossDomainMessenger.sol#L132-L137

Tool used

Manual Review

Recommendation

Clear the collision in the comments and the actual code .

github-actions bot added Has Duplicates A valid issue with 1+ other issues describing the same vulnerability Specification An issue related to the specification (low severity) labels Feb 20, 2023

This was referenced Feb 20, 2023

ustas - Misleading gap size #1

Closed

0x1337 - Minor: Incorrect and inconsistent storage gap #117

Closed

sherlock-admin added the Reward A payout will be made for this issue label Feb 21, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

supernova - Confusion in gap size #146

supernova - Confusion in gap size #146

github-actions bot commented Feb 20, 2023

supernova - Confusion in gap size #146

supernova - Confusion in gap size #146

Comments

github-actions bot commented Feb 20, 2023

Confusion in gap size

Summary

Vulnerability Detail

Impact

Code Snippet

Tool used

Recommendation