Skip to content

Fuse fixed accounting#10

Open
sriyantra wants to merge 30 commits intofuse-reactive-auditfrom
fuse-fixed-accounting
Open

Fuse fixed accounting#10
sriyantra wants to merge 30 commits intofuse-reactive-auditfrom
fuse-fixed-accounting

Conversation

@sriyantra
Copy link
Collaborator

@sriyantra sriyantra commented May 3, 2022

No description provided.

crypto-perry
crypto-perry reviewed May 3, 2022
View reviewed changes
crypto-perry
crypto-perry reviewed May 3, 2022
View reviewed changes
Joeysantoro
Joeysantoro reviewed May 5, 2022
View reviewed changes
xklob
xklob reviewed May 5, 2022
View reviewed changes
xklob
xklob reviewed May 5, 2022
View reviewed changes
@xklob
Copy link

xklob commented May 5, 2022

Something to check before we merge this: need to make sure that there is now way to game the protocol / exploit something during the upgrade, ie between the first and second transactions.

@eswak
Copy link

eswak commented May 6, 2022
edited
Loading

need to make sure that there is now way to game the protocol / exploit something during the upgrade, ie between the first and second transactions

you could deploy a contract that does all calls atomically

xklob
xklob suggested changes May 6, 2022
View reviewed changes
@xklob
Copy link

xklob commented May 6, 2022

need to make sure that there is now way to game the protocol / exploit something during the upgrade, ie between the first and second transactions

you could deploy a contract that does all calls atomically

Flashbots would also work. Yea.

@crypto-perry
Copy link

crypto-perry commented May 6, 2022

need to make sure that there is now way to game the protocol / exploit something during the upgrade, ie between the first and second transactions

you could deploy a contract that does all calls atomically

Flashbots would also work. Yea.

Hmm, I wouldn't risk it with flashbots as the block can be uncled and then txs are in mempool. It is very rare but I have seen frontruns on txs sent to flashbots due to this issue.

@xklob
Copy link

xklob commented May 6, 2022

need to make sure that there is now way to game the protocol / exploit something during the upgrade, ie between the first and second transactions

you could deploy a contract that does all calls atomically

Flashbots would also work. Yea.

Hmm, I wouldn't risk it with flashbots as the block can be uncled and then txs are in mempool. It is very rare but I have seen frontruns on txs sent to flashbots due to this issue.

Actually a great point

@Austin-Williams
Copy link

Austin-Williams commented May 6, 2022
edited
Loading

need to make sure that there is now way to game the protocol / exploit something during the upgrade, ie between the first and second transactions

you could deploy a contract that does all calls atomically

Flashbots would also work. Yea.

Hmm, I wouldn't risk it with flashbots as the block can be uncled and then txs are in mempool. It is very rare but I have seen frontruns on txs sent to flashbots due to this issue.

You can use uncle protection to prevent this.

You can do a require(blockhash(block.number - 1) == _expectedParentHash, "unexpected parent block") check.
Then, on each new block, you submit a new copy of the bundle with the new _expectedParentHash until one of the bundles lands.

@sriyantra
Copy link
Collaborator Author

sriyantra commented May 6, 2022

Something to check before we merge this: need to make sure that there is now way to game the protocol / exploit something during the upgrade, ie between the first and second transactions.

by first and 2nd transactions you mean the 1st and 2nd upgrades? They'll be executed atomically through fuseAdmin's callPool(arbitrary logic) anyway so I don't think this'll be an issue. Also don't see how anything could be gamed but maybe I'm missing something.

ElliotFriedman
ElliotFriedman reviewed May 7, 2022
View reviewed changes
ElliotFriedman
ElliotFriedman reviewed May 7, 2022
View reviewed changes
ElliotFriedman
ElliotFriedman reviewed May 7, 2022
View reviewed changes
hardhat/test/fix-accounting.js
describe("CEtherDelegateTempExploitAccounting", function () {
it("Should merge the attacker's supply and borrow balances", async function () {
// Enable using 0 gas price
await hre.network.provider.send("hardhat_setNextBlockBaseFeePerGas", ["0x0"]);
Copy link

@ElliotFriedman ElliotFriedman May 7, 2022

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This should be done in a before hook, not in the test itself

ElliotFriedman
ElliotFriedman reviewed May 7, 2022
View reviewed changes
zerosnacks
zerosnacks reviewed May 13, 2022
View reviewed changes
contracts/CEtherDelegateTempExploitAccounting.sol
require(accrueInterest() == uint(Error.NO_ERROR), "!accrue");

// Get secondary accounts from data
(address[] memory secondaryAccounts) = abi.decode(data, (address[]));
Copy link

@zerosnacks zerosnacks May 13, 2022
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please ignore my previous comment.

Just a heads up: yarn lint currently throws on this line - not sure why exactly.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Joeysantoro Joeysantoro Joeysantoro left review comments

+5 more reviewers

@Austin-Williams Austin-Williams Austin-Williams left review comments

@crypto-perry crypto-perry crypto-perry left review comments

@ElliotFriedman ElliotFriedman ElliotFriedman left review comments

@zerosnacks zerosnacks zerosnacks left review comments

@xklob xklob xklob requested changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

9 participants

@sriyantra @xklob @eswak @crypto-perry @Austin-Williams @Joeysantoro @ElliotFriedman @zerosnacks @davidlucid