Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

AccountingManager contract's previewDeposit, previewMint, previewWithdraw, and previewRedeem functions are not compliant with EIP-4626 standard #1522

Open
c4-bot-3 opened this issue May 17, 2024 · 10 comments
Open

AccountingManager contract's previewDeposit, previewMint, previewWithdraw, and previewRedeem functions are not compliant with EIP-4626 standard #1522

c4-bot-3 opened this issue May 17, 2024 · 10 comments
Labels
2 (Med Risk) Assets not at direct risk, but function/availability of the protocol could be impacted or leak value bug Something isn't working M-05 primary issue Highest quality submission among a set of duplicates 🤖_16_group AI based duplicate group recommendation satisfactory satisfies C4 submission criteria; eligible for awards selected for report This submission will be included/highlighted in the audit report sponsor confirmed Sponsor agrees this is a problem and intends to fix it (OK to use w/ "disagree with severity") sufficient quality report This report is of sufficient quality

Comments

@c4-bot-3
Copy link
Contributor

Lines of code

https://github.com/code-423n4/2024-04-noya/blob/cc3854f634a72bd4a8b597021887088ca2d6d29f/contracts/accountingManager/AccountingManager.sol#L693-L707
https://github.com/OpenZeppelin/openzeppelin-contracts/blob/master/contracts/token/ERC20/extensions/ERC4626.sol#L151-L168

Vulnerability details

Impact

The AccountingManager contract's deposit(uint256 assets, address receiver), mint(uint256 shares, address receiver), withdraw(uint256 assets, address receiver, address owner), and redeem(uint256 shares, address receiver, address shareOwner) functions below always revert.

https://github.com/code-423n4/2024-04-noya/blob/cc3854f634a72bd4a8b597021887088ca2d6d29f/contracts/accountingManager/AccountingManager.sol#L693-L707

    function mint(uint256 shares, address receiver) public override returns (uint256) {
        revert NoyaAccounting_NOT_ALLOWED();
    }

    function withdraw(uint256 assets, address receiver, address owner) public override returns (uint256) {
        revert NoyaAccounting_NOT_ALLOWED();
    }

    function redeem(uint256 shares, address receiver, address shareOwner) public override returns (uint256) {
        revert NoyaAccounting_NOT_ALLOWED();
    }

    function deposit(uint256 assets, address receiver) public override returns (uint256) {
        revert NoyaAccounting_NOT_ALLOWED();
    }

According to https://eips.ethereum.org/EIPS/eip-4626:

  • previewDeposit MUST return as close to and no more than the exact amount of Vault shares that would be minted in a ``deposit`` call in the same transaction and MAY revert due to other conditions that would also cause ``deposit`` to revert;
  • previewMint MUST return as close to and no fewer than the exact amount of assets that would be deposited in a ``mint`` call in the same transaction and MAY revert due to other conditions that would also cause ``mint`` to revert;
  • previewWithdraw MUST return as close to and no fewer than the exact amount of Vault shares that would be burned in a ``withdraw`` call in the same transaction and MAY revert due to other conditions that would also cause ``withdraw`` to revert;
  • previewRedeem MUST return as close to and no more than the exact amount of assets that would be withdrawn in a ``redeem`` call in the same transaction and MAY revert due to other conditions that would also cause ``redeem`` to revert.

Yet, although no assets can be deposited, no shares can be minted, no assets can be withdrawn, and no share can be redeemed through such deposit, mint, withdraw, and redeem functions, the AccountingManager contract's previewDeposit, previewMint, previewWithdraw, and previewRedeem functions below can still return positive values, which are incorrect based on the EIP-4626 standard. Hence, these previewDeposit, previewMint, previewWithdraw, and previewRedeem functions are not compliant with the EIP-4626 standard though https://code4rena.com/audits/2024-04-noya states that the AccountingManager contract should be compliant with the EIP-4626 standard.

https://github.com/OpenZeppelin/openzeppelin-contracts/blob/master/contracts/token/ERC20/extensions/ERC4626.sol#L151-L168

    function previewDeposit(uint256 assets) public view virtual returns (uint256) {
        return _convertToShares(assets, Math.Rounding.Floor);
    }
    ...
    function previewMint(uint256 shares) public view virtual returns (uint256) {
        return _convertToAssets(shares, Math.Rounding.Ceil);
    }
    ...
    function previewWithdraw(uint256 assets) public view virtual returns (uint256) {
        return _convertToShares(assets, Math.Rounding.Ceil);
    }
    ...
    function previewRedeem(uint256 shares) public view virtual returns (uint256) {
        return _convertToAssets(shares, Math.Rounding.Floor);
    }

Proof of Concept

Please add the following test in testFoundry\TestAccounting.sol. This test will pass to demonstrate the described scenario for the previewMint function. The cases for the previewDeposit, previewWithdraw, and previewRedeem functions are similar to it.

    function test_previewMintCanBeIncorrect() public {
        uint256 _amount = 10_000 * 1e6;

        _dealWhale(baseToken, address(alice), address(0x1AB4973a48dc892Cd9971ECE8e01DcC7688f8F23), 10 * _amount);
        _dealWhale(baseToken, address(bob), address(0x1AB4973a48dc892Cd9971ECE8e01DcC7688f8F23), 10 * _amount);

        vm.prank(alice);
        SafeERC20.forceApprove(IERC20(USDC), address(accountingManager), _amount);

        vm.prank(bob);
        SafeERC20.forceApprove(IERC20(USDC), address(accountingManager), _amount);

        vm.prank(alice);
        accountingManager.deposit(address(alice), _amount, address(0));

        vm.startPrank(bob);

        // this previewMint function call shows that
        //   no fewer than _amount of assets would be deposited in a mint function call for minting _amount shares in the same transaction
        assertEq(accountingManager.previewMint(_amount), _amount);

        // however, calling mint function always revert so no shares can be minted and no assets can be deposited through such mint function,
        //   which means that previewMint function is incorrect
        vm.expectRevert();
        accountingManager.mint(_amount, address(bob));

        vm.stopPrank();
    }

Tools Used

Manual Review

Recommended Mitigation Steps

The previewDeposit, previewMint, previewWithdraw, and previewRedeem functions in the AccountingManager contract can be updated to revert because the corresponding deposit, mint, withdraw, and redeem functions all revert. Then, the AccountingManager contract can further add a function, which is similar to OpenZeppelin's previewDeposit function, to replace the previewDeposit function's usage in the calculateDepositShares and recordProfitForFee functions and add a function, which is similar to OpenZeppelin's previewRedeem function, to replace the previewRedeem function's usage in the calculateWithdrawShares function.

Assessed type

Other
@c4-bot-3 c4-bot-3 added 2 (Med Risk) Assets not at direct risk, but function/availability of the protocol could be impacted or leak value bug Something isn't working labels May 17, 2024
@c4-bot-13 c4-bot-13 added the 🤖_16_group AI based duplicate group recommendation label May 17, 2024
@c4-pre-sort
Copy link

DadeKuma marked the issue as duplicate of #136

@c4-pre-sort
Copy link

DadeKuma marked the issue as sufficient quality report

@c4-pre-sort c4-pre-sort added the sufficient quality report This report is of sufficient quality label May 20, 2024
@c4-judge c4-judge added downgraded by judge Judge downgraded the risk level of this issue and removed 2 (Med Risk) Assets not at direct risk, but function/availability of the protocol could be impacted or leak value labels Jun 2, 2024
@c4-judge
Copy link
Contributor

c4-judge commented Jun 2, 2024

gzeon-c4 changed the severity to QA (Quality Assurance)

@c4-judge c4-judge added QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax grade-c labels Jun 2, 2024
@c4-judge
Copy link
Contributor

c4-judge commented Jun 2, 2024

gzeon-c4 marked the issue as grade-c

@c4-judge c4-judge added the unsatisfactory does not satisfy C4 submission criteria; not eligible for awards label Jun 2, 2024
jacobheun pushed a commit that referenced this issue Jun 4, 2024
@c4-bot-1
rbserver issue #1522
13f0562
@d3e4 d3e4 mentioned this issue Jun 5, 2024
Closed
@c4-judge c4-judge reopened this Jun 9, 2024
@c4-judge c4-judge added 2 (Med Risk) Assets not at direct risk, but function/availability of the protocol could be impacted or leak value and removed downgraded by judge Judge downgraded the risk level of this issue QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax labels Jun 9, 2024
@c4-judge
Copy link
Contributor

c4-judge commented Jun 9, 2024

This previously downgraded issue has been upgraded by gzeon-c4

@c4-judge
Copy link
Contributor

c4-judge commented Jun 9, 2024

gzeon-c4 marked the issue as partial-50

@c4-judge c4-judge closed this as completed Jun 9, 2024
@c4-judge c4-judge added partial-50 Incomplete articulation of vulnerability; eligible for partial credit only (50%) and removed unsatisfactory does not satisfy C4 submission criteria; not eligible for awards partial-50 Incomplete articulation of vulnerability; eligible for partial credit only (50%) duplicate-136 labels Jun 9, 2024
@c4-judge
Copy link
Contributor

c4-judge commented Jun 9, 2024

gzeon-c4 marked the issue as not a duplicate

@c4-judge
Copy link
Contributor

c4-judge commented Jun 9, 2024

gzeon-c4 marked the issue as primary issue

@c4-judge c4-judge added the primary issue Highest quality submission among a set of duplicates label Jun 9, 2024
@c4-judge c4-judge reopened this Jun 9, 2024
@c4-judge c4-judge added satisfactory satisfies C4 submission criteria; eligible for awards and removed grade-c labels Jun 9, 2024
@c4-judge
Copy link
Contributor

c4-judge commented Jun 9, 2024

gzeon-c4 marked the issue as satisfactory

@c4-judge
Copy link
Contributor

c4-judge commented Jun 9, 2024

gzeon-c4 marked the issue as selected for report

@c4-judge c4-judge added the selected for report This submission will be included/highlighted in the audit report label Jun 9, 2024
This was referenced Jun 9, 2024
Closed
Closed
Closed
Closed
Closed
Closed
Closed
Closed
Closed
Closed
Closed
@HadiEsna HadiEsna added the sponsor confirmed Sponsor agrees this is a problem and intends to fix it (OK to use w/ "disagree with severity") label Jun 14, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
2 (Med Risk) Assets not at direct risk, but function/availability of the protocol could be impacted or leak value bug Something isn't working M-05 primary issue Highest quality submission among a set of duplicates 🤖_16_group AI based duplicate group recommendation satisfactory satisfies C4 submission criteria; eligible for awards selected for report This submission will be included/highlighted in the audit report sponsor confirmed Sponsor agrees this is a problem and intends to fix it (OK to use w/ "disagree with severity") sufficient quality report This report is of sufficient quality
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
6 participants
@HadiEsna @c4-judge @c4-pre-sort @C4-Staff @c4-bot-3 @c4-bot-13