The long open interest may exceed the max open interest limit #273

code423n4 · 2022-12-15T23:11:13Z

Lines of code

https://github.com/code-423n4/2022-12-tigris/blob/main/contracts/PairsContract.sol#L142

Vulnerability details

Impact

In Contract PairsContract, when updating the max open interest limit _idToOi[_asset][_tigAsset].maxOi, the contract did not check the long open interests of existing assets. This may result in the fact that some long open interests of existing assets will be higher than the allowed max open interest limit. This confuses the market.

Proof of Concept

Put the below test under describe('Protocol-only functions', function () { in test file: 02.PairsContract.js.

	it('Succeed if reducing max open interest limit to values lower than existing long open interest', async function () {
		await pairscontract.connect(owner).addAsset(99, 'XYZ/ABC', ethers.constants.AddressZero, ethers.utils.parseEther('1'), ethers.utils.parseEther('100'), 1e10, 3e9);
		await pairscontract.connect(owner).setProtocol(NewTrading.address);
		await pairscontract.connect(owner).setMaxOi(99, StableToken.address, ethers.utils.parseEther('2000')); //@audit - set initial max open interest limit
		await pairscontract.connect(NewTrading).modifyLongOi(99, StableToken.address, true, ethers.utils.parseEther('500'));  //@audit - set long open interest of asset
		let [longOi, shortOi] = await pairscontract.idToOi(99, StableToken.address);
		expect(longOi).to.equal(ethers.utils.parseEther('500'));
		await expect(pairscontract.connect(owner).setMaxOi(99, StableToken.address, ethers.utils.parseEther('1'))).to.be.not.reverted; //@audit - update max open interest limit to a level lower than exist long open interest
	});

Tools Used

Manual audit.

Recommended Mitigation Steps

Set the max open interest limit as constant/immutable, or adopt some strategies that can keep consistency between existing long open interests and the max open interest limit.

The text was updated successfully, but these errors were encountered:

c4-judge · 2022-12-23T17:41:41Z

GalloDaSballo marked the issue as duplicate of #370

c4-judge · 2023-01-15T13:57:18Z

GalloDaSballo marked the issue as duplicate of #377

c4-judge · 2023-01-15T13:57:26Z

GalloDaSballo changed the severity to 2 (Med Risk)

c4-judge · 2023-01-23T09:05:06Z

GalloDaSballo marked the issue as satisfactory

code423n4 added 3 (High Risk) Assets can be stolen/lost/compromised directly bug Something isn't working labels Dec 15, 2022

code423n4 added a commit that referenced this issue Dec 15, 2022

gz627 issue #273

921a23b

c4-judge closed this as completed Dec 23, 2022

c4-judge added the duplicate-370 label Dec 23, 2022

c4-judge added duplicate-377 and removed duplicate-370 3 (High Risk) Assets can be stolen/lost/compromised directly labels Jan 15, 2023

c4-judge added 2 (Med Risk) Assets not at direct risk, but function/availability of the protocol could be impacted or leak value downgraded by judge Judge downgraded the risk level of this issue labels Jan 15, 2023

c4-judge added the satisfactory satisfies C4 submission criteria; eligible for awards label Jan 23, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

The long open interest may exceed the max open interest limit #273

The long open interest may exceed the max open interest limit #273

code423n4 commented Dec 15, 2022

c4-judge commented Dec 23, 2022

c4-judge commented Jan 15, 2023

c4-judge commented Jan 15, 2023

c4-judge commented Jan 23, 2023

The long open interest may exceed the max open interest limit #273

The long open interest may exceed the max open interest limit #273

Comments

code423n4 commented Dec 15, 2022

Lines of code

Vulnerability details

Impact

Proof of Concept

Tools Used

Recommended Mitigation Steps

c4-judge commented Dec 23, 2022

c4-judge commented Jan 15, 2023

c4-judge commented Jan 15, 2023

c4-judge commented Jan 23, 2023