{"id":418,"date":"2022-11-04T12:00:17","date_gmt":"2022-11-04T10:00:17","guid":{"rendered":"https:\/\/ackeeblockchain.com\/blog\/?p=418"},"modified":"2024-05-16T13:45:57","modified_gmt":"2024-05-16T11:45:57","slug":"neon-labs-neon-evm-audit-summary","status":"publish","type":"post","link":"https:\/\/ackee.xyz\/blog\/neon-labs-neon-evm-audit-summary\/","title":{"rendered":"Neon Labs: Neon EVM Audit Summary"},"content":{"rendered":"

The Neon EVM<\/strong> is a tool that allows Ethereum-like transactions<\/strong> to be processed on Solana, taking full advantage of the functionality native to Solana, including the ability to execute transactions in parallel. As such, the Neon EVM allows dApps to operate with the low gas fees, high transaction speed, and high throughput of Solana<\/strong>, while also offering access to the growing Solana market.<\/p>\n

Neon Labs<\/a> engaged Ackee Blockchain<\/a>\u00a0to review and audit<\/a> their <\/span>Neon EVM contract between September 26 and November 4, 2022<\/strong>. The entire audit process was conducted with a total time commitment of 33 engineering days<\/a><\/strong>. We now publish a summary of our results.<\/p>\n

Methodology<\/b><\/h4>\n
\n
\n
\n

The beginning of the audit was dedicated to understanding the Neon EVM program<\/a>.<\/p>\n<\/div>\n<\/div>\n<\/div>\n

Reviewing the specifications, sources, and instructions provided to us is essential to ensure we understand the project’s size, scope, and functionality. This is followed by a detailed manual code review, which is the process of reading the source code line by line to identify potential vulnerabilities.\u00a0<\/span><\/p>\n

When the code review is complete, we run client’s tests to ensure the system works as expected and potentially write missing unit or fuzzy tests using our testing framework <\/span>Trident<\/span><\/a>. We also deploy programs locally and try to attack and break the system.\u00a0<\/span><\/p>\n

Scope\u00a0<\/b><\/h4>\n

We audited commit <\/span>eeed4c4fd55e09d30a6a7ae4253a31bdd0bb7a35<\/em>\u00a0<\/em>of the neonlabsorg\/neon-evm<\/a><\/span> repository and commit 49bd848e08502010f6d5f31aa5cea4dac65eaad7 <\/em>neonlabsorg\/evm<\/a> repository.<\/p>\n

During the security review<\/span>, we paid particular attention to the following questions:<\/span><\/p>\n

\n
\n
\n