Signed/unsigned arithmetic confusion
Centrifuge's assessment for RD-F-018 — scored green on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.
Evidence summary #
Solidity 0.8.26 (deployed) and 0.8.28 (repo) both provide built-in overflow/underflow revert protection eliminating classic signed/unsigned arithmetic confusion. Auth.sol contains no arithmetic. Gateway.sol uses uint128 for gas limits with bounded addition guarded by maxBatchGasLimit() check. No signed/unsigned confusion finding raised in any of 22+ audit engagements.
Sources #
- EtherscanRoot.sol verified source — v0.8.26 built-in overflow revertRoot contract 0x0C1fDfd6a1331a875EA013F3897fc8a76ada5DfC — Solidity 0.8.26 compiler with overflow protectionretrieved 2026-04-28
- foundry.toml — SMT checker arithmetic overflow property checkingcentrifuge/protocol foundry.toml — SMT checker with arithmetic overflow targetsretrieved 2026-04-28
- yAudit Jan 2026 V3.1 fix reviewyAudit V3.1 fix review Jan 2026 — no signed/unsigned finding in scoperetrieved 2026-04-28
Methodology #
Determine whether signed-integer conversions or comparisons where unsigned was intended exist in the deployed bytecode/source.
See the full factor methodology and distribution across all protocols →
rubric_version v1.7.0 protocol centrifuge factor RD-F-018 score green collected_at 2026-04-30 21:19:10