Platform: Code4rena
Start Date: 07/08/2023
Pot Size: $36,500 USDC
Total HM: 11
Participants: 125
Period: 3 days
Judge: alcueca
Total Solo HM: 4
Id: 274
League: ETH
Rank: 64/125
Findings: 1
Award: $9.82
🌟 Selected for report: 0
🚀 Solo Findings: 0
🌟 Selected for report: RED-LOTUS-REACH
Also found by: 0x3b, 0x4non, 0xCiphky, 0xDING99YA, 0xDetermination, 0xE1, 0xG0P1, 0xStalin, 0xWaitress, 0xbrett8571, 0xhacksmithh, 0xkazim, 0xmuxyz, 0xweb3boy, 14si2o_Flint, AlexCzm, Alhakista, Bube, Bughunter101, Deekshith99, Eeyore, Giorgio, HChang26, InAllHonesty, JP_Courses, KmanOfficial, MatricksDeCoder, Mike_Bello90, MrPotatoMagic, Naubit, QiuhaoLi, RHaO-sec, Raihan, Rolezn, SUPERMAN_I4G, Shubham, Silverskrrrt, Strausses, T1MOH, Topmark, Tripathi, Watermelon, _eperezok, aakansha, auditsea, audityourcontracts, ayden, carlos__alegre, castle_chain, cducrest, ch0bu, d23e, deadrxsezzz, deth, devival, erebus, fatherOfBlocks, halden, hassan-truscova, hpsb, hunter_w3b, imkapadia, immeas, jat, kaden, kaveyjoe, klau5, koxuan, kutugu, ladboy233, lanrebayode77, leasowillow, lsaudit, markus_ether, matrix_0wl, merlin, nemveer, ni8mare, nonseodion, oakcobalt, owadez, p_crypt0, pipidu83, piyushshukla, popular00, ppetrov, rjs, sandy, sl1, supervrijdag, tay054, thekmj, wahedtalash77, windhustler, zhaojie
9.8204 USDC - $9.82
checkpoint_market() Contradicting With Logics Of _checkpoint_market()function checkpoint_market() first verify _forwardTimestampLimit and then call private function _checkpoint_market()
Before making call it ensure that total balance locked in lending market during that epoch should greater than 0.
function checkpoint_market(address _market, uint256 _forwardTimestampLimit) external is_valid_epoch(_forwardTimestampLimit) { require(lendingMarketTotalBalanceEpoch[_market] > 0, "No deposits for this market"); _checkpoint_market(_market, _forwardTimestampLimit); }
But _checkpoint_market has functionality to set lendingMarketTotalBalanceEpoch even when its 0
function _checkpoint_market(address _market, uint256 _forwardTimestampLimit) private { uint256 currEpoch = (block.timestamp / WEEK) * WEEK; uint256 lastMarketUpdateEpoch = lendingMarketTotalBalanceEpoch[_market]; uint256 updateUntilEpoch = Math.min(currEpoch, _forwardTimestampLimit); if (lastMarketUpdateEpoch == 0) { lendingMarketTotalBalanceEpoch[_market] = currEpoch; } else if (lastMarketUpdateEpoch < currEpoch) { // Fill in potential gaps in the market total balances history uint256 lastMarketBalance = lendingMarketTotalBalance[_market][lastMarketUpdateEpoch]; for (uint256 i = lastMarketUpdateEpoch; i <= updateUntilEpoch; i += WEEK) { lendingMarketTotalBalance[_market][i] = lastMarketBalance; } if (updateUntilEpoch > lastMarketUpdateEpoch) { // Only update epoch when we actually checkpointed to avoid decreases lendingMarketTotalBalanceEpoch[_market] = updateUntilEpoch; } } }
So checkpoint_market() Should allow function call even when lendingMarketTotalBalanceEpoch[_market] == 0
Same Above issue with checkpoint_lender() and _checkpoint_lender()
And checkpoint_lender() should not fail when lendingMarketBalancesEpoch[_market][_lender] == 0
File: src/LendingLedger.sol https://github.com/code-423n4/2023-08-verwa/blob/main/src/LendingLedger.sol#L117 https://github.com/code-423n4/2023-08-verwa/blob/main/src/LendingLedger.sol#L90-L92 https://github.com/code-423n4/2023-08-verwa/blob/main/src/LendingLedger.sol#L130 https://github.com/code-423n4/2023-08-verwa/blob/main/src/LendingLedger.sol#L66-L68
#0 - c4-judge
2023-08-22T13:47:04Z
alcueca marked the issue as grade-a