Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Audinarey - DepositWrapper::deposit(...) will revert for stETH #202

Closed
sherlock-admin4 opened this issue Jun 27, 2024 · 0 comments
Closed

Audinarey - DepositWrapper::deposit(...) will revert for stETH #202

sherlock-admin4 opened this issue Jun 27, 2024 · 0 comments
Labels
Non-Reward This issue will not receive a payout Sponsor Disputed The sponsor disputed this issue's validity

Comments

@sherlock-admin4
Copy link
Contributor

sherlock-admin4 commented Jun 27, 2024
edited by sherlock-admin3
Loading

Audinarey

High

DepositWrapper::deposit(...) will revert for stETH

Summary

User calls DepositWrapper::deposit(...) to deposit specified tokens into the vault, converting them to the required format if necessary. If the user specifies stETh as the token to deposit, the stETh is transfered into the DepositWrapper and the _stethToWsteth(...) is called to convert the stETH into wstETH

File: DepositWrapper.sol

35:     function _stethToWsteth(uint256 amount) private returns (uint256) {
36:         IERC20(steth).safeIncreaseAllowance(wsteth, amount); 
37: @>      IWSteth(wsteth).wrap(amount); 
38:         return IERC20(wsteth).balanceOf(address(this));
39:     }

42:     function deposit(
43:         address to,
44:         address token,
45:         uint256 amount,
46:         uint256 minLpAmount,
47:         uint256 deadline
48:     ) external payable returns (uint256 lpAmount) {
SNIP
....
55:         if (token == steth) { 
56: @>          IERC20(steth).safeTransferFrom(sender, wrapper, amount); 
57: @>          amount = _stethToWsteth(amount); // this returns shares

The problem is that the protocol always assumes that the amount of stETh tokens received is equal to the amount of tokens transferred into the DepositWrapper.
This is not the case for rebasing tokens, such as stETH, because internally it transfers shares which generally results in the received amount of tokens being lower than the requested one by 1-2 wei because of roundings.
For instance transferring 1e18 eETH tokens from Alice to DepositWrapper, will result in DepositWrapper receiving 0.99...e18 eETH tokens.

Lido acknowledges this issue here and it is discussed extensively [here](lido-dao/issues/442

Vulnerability Detail

  • User calls DepositWrapper::deposit(...) specifying token = stETh and amount = 1 ether
  • 1 ether is transfered to DepositWrapper on L56 but due to rounding issue DepositWrapper receives 1 ether. minus 1wei (1 ether - 1)
  • the DepositWrapper now has less than 1 ether
  • stethToWsteth(amount) is now called on L57 to wrap the exact 1 ether which will attempt to transfer 1 ether from the DepositWrapper
  • The function reverts because DepositWrapper now has less than 1 ether to be transfered out

Impact

This breaks accounting as well as well as a denial of service

Code Snippet

https://github.com/sherlock-audit/2024-06-mellow/blob/main/mellow-lrt/src/utils/DepositWrapper.sol#L55-L57

Tool used

Manual Review

Recommendation

Modify the DepositWrapper::deposit(...) function as shown below

42:     function deposit(
43:         address to,
44:         address token,
45:         uint256 amount,
46:         uint256 minLpAmount,
47:         uint256 deadline
48:     ) external payable returns (uint256 lpAmount) {
SNIP
....
55:         if (token == steth) { 
56:             IERC20(steth).safeTransferFrom(sender, wrapper, amount); 

57:  -          amount = _stethToWsteth(amount); 
57:  +          amount = _stethToWsteth(IERC20(steth).balanceOf(address(this));

Duplicate of #299
@sherlock-admin4 sherlock-admin4 changed the title Droll Ash Nuthatch - Vault::removeToken can be griefed DepositWrapper::deposit(...) will revert for stETH Jun 28, 2024
@sherlock-admin3 sherlock-admin3 added the Sponsor Disputed The sponsor disputed this issue's validity label Jun 30, 2024
@github-actions github-actions bot changed the title DepositWrapper::deposit(...) will revert for stETH Energetic Slate Panther - DepositWrapper::deposit(...) will revert for stETH Jul 6, 2024
@github-actions github-actions bot closed this as completed Jul 6, 2024
@github-actions github-actions bot added the Duplicate A valid issue that is a duplicate of an issue with `Has Duplicates` label label Jul 6, 2024
@sherlock-admin3 sherlock-admin3 changed the title Energetic Slate Panther - DepositWrapper::deposit(...) will revert for stETH Audinarey - DepositWrapper::deposit(...) will revert for stETH Jul 15, 2024
@sherlock-admin3 sherlock-admin3 added Non-Reward This issue will not receive a payout and removed Duplicate A valid issue that is a duplicate of an issue with `Has Duplicates` label labels Jul 15, 2024
@Audinarey Audinarey mentioned this issue Jul 16, 2024
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Non-Reward This issue will not receive a payout Sponsor Disputed The sponsor disputed this issue's validity
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@sherlock-admin3 @sherlock-admin4