- Join Sherlock Discord
- Submit findings using the issue page in your private contest repo (label issues as med or high)
- Read for more details
Arbitrum
any
none
none
none
None
None
TRUSTED
TRUSTED
- multisig. 2. the owner of JOJODealer, JUSD, DepositStableCoinToDealer, JUSDBank, JUSDExchange, FlashloanRepay, FlashloanLiquidate, GeneralRepay and FundingRateArbitrage. 3. It can set some parameters. 4. Steal the user's fund
Q: Is the code/contract expected to comply with any EIPs? Are there specific assumptions around adhering to those EIPs that Watsons should be aware of?
ERC20 for JUSD
- Centralization Risk: admin have excessive authority, FundingRateKeeper role, JOJO operation role, valid orderSender, emergency oracle owner, insurance account. All have used multi-sig.
- Incompatibility with Deflationary Tokens: primary asset and secondary asset are standard ERC20 token
- Low-level Call: About the execute operation of Subaccount.
- unused contract: in the delist, we will replace the oracle to make the price anchored a fixed price
- Missing Zero Address Validation
- Removal of
Perpetual:It is the normal logic, delist the perpetual. - Reliability of Price
- Third Party Dependencies: chainlink Oracle Failed
- Potential Reentrancy Attack:
- _settle() after
IDealer(owner()).requestLiquidation - change
secondaryCreditafterIERC20(state.primaryAsset).safeTransfer(to, primaryAmount);in funding.sol - change secondaryAsset after
IDecimalERC20(_secondaryAsset).decimals()in Operation.sol
- _settle() after
- Open positions are discarded if
Perpetualis deregistered: only remove when no position - Signature can be replayed: backend will add nonce to the order type.
- Address Poisoning Attack: caused by the user's wrong copy address and team can not do something for help.
- DOS attack possible for trading:
- only valid msg.sender can call approveTrade. If there are too many orders and cannot be matched, we will divide them into multiple transactions.
- _realizePnl function loops over an unbounded array within the
openPositions
- setOperator function is missing onlyOwner modifier: this function is aiming to set every user own operator so no need modifier
- Collateral Token is standard ERC20
- FlashloanRepay and FlashloanLiquidate is only to implement the function. We only focus the USDC whether left in this two contract. If users want to implement their own function, the need to write their own contract.
- JUSD system operates under a cross-margin mode, if the users are not safe, Appreciated collateral can be obtained during the liquidation process.
- Asset losses of less than 1e-2 due to loss of precision are not considered.
https://github.com/JOJOexchange/smart-contract-EVM/tree/main/audit
Q: Are there any off-chain mechanisms or off-chain procedures for the protocol (keeper bots, input validation expectations, etc)?
JOJO uses a hybrid order book mechanism that combines off-chain matching with on-chain confirmation.
Q: In case of external protocol integrations, are the risks of external contracts pausing or executing an emergency withdrawal acceptable? If not, Watsons will submit issues related to these situations that can harm your protocol's functionality.
Yes, that's acceptable. Currently, we are using Chainlink's price feed to support contract prices. If Chainlink suspends service, we have a backup self-built oracle.
Q: Do you expect to use any of the following tokens with non-standard behaviour with the smart contracts?
we expect USDC/USDT/ BTC/WSTETH/ETH/ARB/SOL/LINK
https://about.jojo.exchange/jojo-1/jojo-exchange/overview https://jojo-docs.netlify.app/
smart-contract-EVM @ 4103ea69689b62ea60766314578f410fb364c90f
- smart-contract-EVM/src/DepositStableCoinToDealer.sol
- smart-contract-EVM/src/FlashLoanLiquidate.sol
- smart-contract-EVM/src/FlashLoanRepay.sol
- smart-contract-EVM/src/FundingRateArbitrage.sol
- smart-contract-EVM/src/FundingRateUpdateLimiter.sol
- smart-contract-EVM/src/GeneralRepay.sol
- smart-contract-EVM/src/JOJODealer.sol
- smart-contract-EVM/src/JOJOExternal.sol
- smart-contract-EVM/src/JOJOOperation.sol
- smart-contract-EVM/src/JOJOStorage.sol
- smart-contract-EVM/src/JOJOView.sol
- smart-contract-EVM/src/JUSDBank.sol
- smart-contract-EVM/src/JUSDBankStorage.sol
- smart-contract-EVM/src/JUSDExchange.sol
- smart-contract-EVM/src/JUSDMulticall.sol
- smart-contract-EVM/src/JUSDOperation.sol
- smart-contract-EVM/src/JUSDRepayHelper.sol
- smart-contract-EVM/src/JUSDView.sol
- smart-contract-EVM/src/Perpetual.sol
- smart-contract-EVM/src/interfaces/IDealer.sol
- smart-contract-EVM/src/interfaces/IFlashLoanReceive.sol
- smart-contract-EVM/src/interfaces/IJUSDBank.sol
- smart-contract-EVM/src/interfaces/IJUSDExchange.sol
- smart-contract-EVM/src/interfaces/IPerpetual.sol
- smart-contract-EVM/src/interfaces/internal/IChainlink.sol
- smart-contract-EVM/src/interfaces/internal/IDecimalERC20.sol
- smart-contract-EVM/src/interfaces/internal/IPriceSource.sol
- smart-contract-EVM/src/libraries/EIP712.sol
- smart-contract-EVM/src/libraries/Errors.sol
- smart-contract-EVM/src/libraries/FlashLoanReentrancyGuard.sol
- smart-contract-EVM/src/libraries/Funding.sol
- smart-contract-EVM/src/libraries/Liquidation.sol
- smart-contract-EVM/src/libraries/Operation.sol
- smart-contract-EVM/src/libraries/Position.sol
- smart-contract-EVM/src/libraries/SignedDecimalMath.sol
- smart-contract-EVM/src/libraries/Trading.sol
- smart-contract-EVM/src/libraries/Types.sol
- smart-contract-EVM/src/oracle/ConstOracle.sol
- smart-contract-EVM/src/oracle/EmergencyOracle.sol
- smart-contract-EVM/src/oracle/OracleAdaptor.sol
- smart-contract-EVM/src/oracle/OracleAdaptorWstETH.sol
- smart-contract-EVM/src/oracle/UniswapPriceAdaptor.sol
- smart-contract-EVM/src/subaccount/BotSubaccount.sol
- smart-contract-EVM/src/subaccount/BotSubaccountFactory.sol
- smart-contract-EVM/src/subaccount/DegenSubaccount.sol
- smart-contract-EVM/src/subaccount/DegenSubaccountFactory.sol
- smart-contract-EVM/src/subaccount/Subaccount.sol
- smart-contract-EVM/src/subaccount/SubaccountFactory.sol
- smart-contract-EVM/src/token/JUSD.sol