Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

maxDeposit, maxMint, maxWithdraw, and maxRedeem functions do not return 0 when they should #1517

Open
c4-bot-3 opened this issue May 17, 2024 · 10 comments
Open

maxDeposit, maxMint, maxWithdraw, and maxRedeem functions do not return 0 when they should #1517

c4-bot-3 opened this issue May 17, 2024 · 10 comments
Labels
2 (Med Risk) Assets not at direct risk, but function/availability of the protocol could be impacted or leak value bug Something isn't working M-06 primary issue Highest quality submission among a set of duplicates 🤖_primary AI based primary recommendation satisfactory satisfies C4 submission criteria; eligible for awards selected for report This submission will be included/highlighted in the audit report sponsor acknowledged Technically the issue is correct, but we're not going to resolve it for XYZ reasons sufficient quality report This report is of sufficient quality

Comments

@c4-bot-3
Copy link
Contributor

Lines of code

https://github.com/OpenZeppelin/openzeppelin-contracts/blob/master/contracts/token/ERC20/extensions/ERC4626.sol#L131-L148
https://github.com/code-423n4/2024-04-noya/blob/cc3854f634a72bd4a8b597021887088ca2d6d29f/contracts/accountingManager/AccountingManager.sol#L200-L219
https://github.com/code-423n4/2024-04-noya/blob/cc3854f634a72bd4a8b597021887088ca2d6d29f/contracts/accountingManager/AccountingManager.sol#L304-L316
https://github.com/code-423n4/2024-04-noya/blob/cc3854f634a72bd4a8b597021887088ca2d6d29f/contracts/accountingManager/AccountingManager.sol#L693-L707

Vulnerability details

Impact

The AccountingManager contracts' maxDeposit and maxMint functions below always return type(uint256).max and maxWithdraw and maxRedeem functions below would return positive values when balanceOf(owner) is positive. However, when the deposit(address receiver, uint256 amount, address referrer) and withdraw(uint256 share, address receiver) functions below are paused, calling these functions would revert in which no amount can be deposited and no share can be withdrawn; in this case, the positive values returned by the maxDeposit, maxMint, maxWithdraw, and maxRedeem functions are incorrect and misleading.

https://github.com/OpenZeppelin/openzeppelin-contracts/blob/master/contracts/token/ERC20/extensions/ERC4626.sol#L131-L148

    function maxDeposit(address) public view virtual returns (uint256) {
        return type(uint256).max;
    }
    ...
    function maxMint(address) public view virtual returns (uint256) {
        return type(uint256).max;
    }
    ...
    function maxWithdraw(address owner) public view virtual returns (uint256) {
        return _convertToAssets(balanceOf(owner), Math.Rounding.Floor);
    }
    ...
    function maxRedeem(address owner) public view virtual returns (uint256) {
        return balanceOf(owner);
    }

https://github.com/code-423n4/2024-04-noya/blob/cc3854f634a72bd4a8b597021887088ca2d6d29f/contracts/accountingManager/AccountingManager.sol#L200-L219

    function deposit(address receiver, uint256 amount, address referrer) public nonReentrant whenNotPaused {
        ...
    }

https://github.com/code-423n4/2024-04-noya/blob/cc3854f634a72bd4a8b597021887088ca2d6d29f/contracts/accountingManager/AccountingManager.sol#L304-L316

    function withdraw(uint256 share, address receiver) public nonReentrant whenNotPaused {
        ...
    }

Moreover, calling the deposit(uint256 assets, address receiver), mint(uint256 shares, address receiver), withdraw(uint256 assets, address receiver, address owner), and redeem(uint256 shares, address receiver, address shareOwner) functions below always revert so no assets can be deposited, no shares can be minted, no assets can be withdrawn, and no share can be redeemed through these functions; in this case, the positive values returned by the maxDeposit, maxMint, maxWithdraw, and maxRedeem functions are also incorrect and misleading.

As specified in https://eips.ethereum.org/EIPS/eip-4626:

  • maxDeposit MUST factor in both global and user-specific limits, like if deposits are entirely disabled (even temporarily) it MUST return 0;
  • maxMint MUST factor in both global and user-specific limits, like if mints are entirely disabled (even temporarily) it MUST return 0;
  • maxWithdraw MUST factor in both global and user-specific limits, like if withdrawals are entirely disabled (even temporarily) it MUST return 0;
  • maxRedeem MUST factor in both global and user-specific limits, like if redemption is entirely disabled (even temporarily) it MUST return 0.

Since the current maxDeposit, maxMint, maxWithdraw, and maxRedeem functions do not return 0 when they should, these functions are not compliant with the EIP-4626 standard even though the AccountingManager contract should be compliant with the EIP-4626 standard according to https://code4rena.com/audits/2024-04-noya.

https://github.com/code-423n4/2024-04-noya/blob/cc3854f634a72bd4a8b597021887088ca2d6d29f/contracts/accountingManager/AccountingManager.sol#L693-L707

    function mint(uint256 shares, address receiver) public override returns (uint256) {
        revert NoyaAccounting_NOT_ALLOWED();
    }

    function withdraw(uint256 assets, address receiver, address owner) public override returns (uint256) {
        revert NoyaAccounting_NOT_ALLOWED();
    }

    function redeem(uint256 shares, address receiver, address shareOwner) public override returns (uint256) {
        revert NoyaAccounting_NOT_ALLOWED();
    }

    function deposit(uint256 assets, address receiver) public override returns (uint256) {
        revert NoyaAccounting_NOT_ALLOWED();
    }

Proof of Concept

Please add the following test in testFoundry\TestAccounting.sol. This test will pass to demonstrate the described scenario for the maxDeposit function. The cases for the maxMint, maxWithdraw, and maxRedeem functions are similar to it.

    function test_maxDepositCanBeIncorrect() public {
        uint256 _amount = 10_000 * 1e6;

        _dealWhale(baseToken, address(alice), address(0x1AB4973a48dc892Cd9971ECE8e01DcC7688f8F23), 10 * _amount);
        _dealWhale(baseToken, address(bob), address(0x1AB4973a48dc892Cd9971ECE8e01DcC7688f8F23), 10 * _amount);

        vm.prank(alice);
        SafeERC20.forceApprove(IERC20(USDC), address(accountingManager), _amount);

        vm.prank(bob);
        SafeERC20.forceApprove(IERC20(USDC), address(accountingManager), _amount);

        vm.prank(alice);
        accountingManager.deposit(address(alice), _amount, address(0));

        vm.startPrank(bob);

        // maxDeposit function returns type(uint256).max
        assertEq(accountingManager.maxDeposit(address(bob)), type(uint256).max);

        // yet, calling deposit(uint256 assets, address receiver) function always reverts
        vm.expectRevert();
        accountingManager.deposit(1, address(bob));

        vm.startPrank(owner);

        // many functions of AccountingManager contract are paused because of an emergency
        accountingManager.emergencyStop();

        vm.startPrank(bob);

        // maxDeposit function still returns type(uint256).max
        assertEq(accountingManager.maxDeposit(address(bob)), type(uint256).max);

        // however, calling deposit(address receiver, uint256 amount, address referrer) function reverts because it is paused
        vm.expectRevert();
        accountingManager.deposit(address(bob), 1, address(0));

        vm.stopPrank();
    }

Tools Used

Manual Review

Recommended Mitigation Steps

The AccountingManager contract can be updated to add the maxDeposit, maxMint, maxWithdraw, and maxRedeem functions to override the corresponding functions in OpenZeppelin's ERC4626 contract. To be compliant with the EIP-4626 standard, these functions can always return 0 since calling the deposit(uint256 assets, address receiver), mint(uint256 shares, address receiver), withdraw(uint256 assets, address receiver, address owner), and redeem(uint256 shares, address receiver, address shareOwner) functions always revert. Moreover, two more functions that are similar to the maxDeposit and maxRedeem functions can be added in the AccountingManager contract to accompany the deposit(address receiver, uint256 amount, address referrer) and withdraw(uint256 share, address receiver) functions, and these two additional functions should respectively return 0 when the corresponding deposit and withdraw functions are respectively paused.

Assessed type

ERC4626
@c4-bot-3 c4-bot-3 added 2 (Med Risk) Assets not at direct risk, but function/availability of the protocol could be impacted or leak value bug Something isn't working labels May 17, 2024
@c4-bot-12 c4-bot-12 added the 🤖_primary AI based primary recommendation label May 17, 2024
@c4-pre-sort
Copy link

DadeKuma marked the issue as duplicate of #136

@c4-pre-sort
Copy link

DadeKuma marked the issue as sufficient quality report

@c4-pre-sort c4-pre-sort added the sufficient quality report This report is of sufficient quality label May 20, 2024
@c4-judge c4-judge removed the 2 (Med Risk) Assets not at direct risk, but function/availability of the protocol could be impacted or leak value label Jun 2, 2024
@c4-judge
Copy link
Contributor

c4-judge commented Jun 2, 2024

gzeon-c4 changed the severity to QA (Quality Assurance)

@c4-judge c4-judge added downgraded by judge Judge downgraded the risk level of this issue QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax labels Jun 2, 2024
jacobheun pushed a commit that referenced this issue Jun 4, 2024
@c4-bot-4
rbserver issue #1517
425357b
@d3e4 d3e4 mentioned this issue Jun 5, 2024
Closed
@c4-judge c4-judge reopened this Jun 9, 2024
@c4-judge
Copy link
Contributor

c4-judge commented Jun 9, 2024

This previously downgraded issue has been upgraded by gzeon-c4

@c4-judge c4-judge added 2 (Med Risk) Assets not at direct risk, but function/availability of the protocol could be impacted or leak value and removed downgraded by judge Judge downgraded the risk level of this issue QA (Quality Assurance) Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax labels Jun 9, 2024
@c4-judge
Copy link
Contributor

c4-judge commented Jun 9, 2024

gzeon-c4 marked the issue as partial-25

@c4-judge c4-judge closed this as completed Jun 9, 2024
@c4-judge c4-judge added the partial-25 Incomplete articulation of vulnerability; eligible for partial credit only (25%) label Jun 9, 2024
@c4-judge
Copy link
Contributor

c4-judge commented Jun 9, 2024

gzeon-c4 marked the issue as not a duplicate

@c4-judge c4-judge reopened this Jun 9, 2024
@c4-judge c4-judge removed partial-25 Incomplete articulation of vulnerability; eligible for partial credit only (25%) duplicate-136 labels Jun 9, 2024
@c4-judge
Copy link
Contributor

c4-judge commented Jun 9, 2024

gzeon-c4 marked the issue as primary issue

@c4-judge c4-judge added primary issue Highest quality submission among a set of duplicates satisfactory satisfies C4 submission criteria; eligible for awards labels Jun 9, 2024
@c4-judge
Copy link
Contributor

c4-judge commented Jun 9, 2024

gzeon-c4 marked the issue as satisfactory

@c4-judge c4-judge added the selected for report This submission will be included/highlighted in the audit report label Jun 9, 2024
@c4-judge
Copy link
Contributor

c4-judge commented Jun 9, 2024

gzeon-c4 marked the issue as selected for report

This was referenced Jun 9, 2024
Closed
Closed
Closed
Closed
Closed
Closed
Closed
@gzeon-c4
Copy link

gzeon-c4 commented Jun 9, 2024

I am unable to create dupe from existing issue due to a bug in the extension, note to @C4-Staff

These QA issues should create a satisfactory M dupe for #1517
#1239 #1202 #678 #673 #591 #526

This was referenced Jun 12, 2024
Closed
Closed
Closed
Closed
Closed
Closed
@HadiEsna HadiEsna added the sponsor acknowledged Technically the issue is correct, but we're not going to resolve it for XYZ reasons label Jun 14, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
2 (Med Risk) Assets not at direct risk, but function/availability of the protocol could be impacted or leak value bug Something isn't working M-06 primary issue Highest quality submission among a set of duplicates 🤖_primary AI based primary recommendation satisfactory satisfies C4 submission criteria; eligible for awards selected for report This submission will be included/highlighted in the audit report sponsor acknowledged Technically the issue is correct, but we're not going to resolve it for XYZ reasons sufficient quality report This report is of sufficient quality
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
7 participants
@HadiEsna @c4-judge @c4-pre-sort @C4-Staff @gzeon-c4 @c4-bot-3 @c4-bot-12