Back to ABAIKUNANBAEV's contests

Lybra Finance - ABAIKUNANBAEV's results

A protocol building the first interest-bearing omnichain stablecoin backed by LSD.

General Information

Platform: Code4rena

Start Date: 23/06/2023

Pot Size: $60,500 USDC

Total HM: 31

Participants: 132

Period: 10 days

Judge: 0xean

Total Solo HM: 10

Id: 254

League: ETH

Lybra Finance

Findings Distribution

Researcher Performance

Rank: 82/132

Findings: 2

Award: $74.49

QA:
grade-b
Analysis:
grade-b

🌟 Selected for report: 0

🚀 Solo Findings: 0

External Links

Code4rena Contest PageGithub Contest RepositoryGithub Findings RepositoryLybra Finance

Findings Information

🌟 Selected for report: 0xnev

Also found by: 0xRobocop, 0xbrett8571, 0xkazim, 0xnacho, 3agle, 8olidity, ABAIKUNANBAEV, Bauchibred, Co0nan, CrypticShepherd, D_Auditor, DelerRH, HE1M, Iurii3, Kaysoft, MrPotatoMagic, RedOneN, RedTiger, Rolezn, SanketKogekar, Sathish9098, Timenov, Toshii, Vagner, bart1e, bytes032, codetilda, devival, halden, hals, kutugu, m_Rassska, naman1778, nonseodion, seth_lawson, solsaver, squeaky_cactus, totomanov, y51r, yudan, zaevlad

Awards

9.931 USDC - $9.93

Labels

bug
grade-b
high quality report
QA (Quality Assurance)
sponsor acknowledged
Q-21

External Links

Link to GitHub issue
  1. In LybraConfigurator.sol, there is no need in newRatio <= vaultSafeCollateralRatio[pool] + 1e19 check as it has always to be below 150%. This require statement:

require(newRatio >= 130 * 1e18 && newRatio <= 150 * 1e18 && newRatio <= vaultSafeCollateralRatio[pool] + 1e19, "LNA"); checks whether the newRatio >= 130% and <= 150% and the last check is to make sure that it's lower than current safeCollateralRatio of the pool + 10%. safeCollateralRatio is always above 160% as defined by the specification so there is no need to check the last condition at all as the second condition would be enough.

Code snippet: https://github.com/code-423n4/2023-06-lybra/blob/main/contracts/lybra/configuration/LybraConfigurator.sol#L127

  1. badCollateralRatio variable in LybraEUSDVaultBase.sol can be changed to constant as it's predetermined and not initialized in the constructor (also this can be considered as gas optimization).

Code snippet:

https://github.com/code-423n4/2023-06-lybra/blob/main/contracts/lybra/pools/base/LybraEUSDVaultBase.sol#L21

  1. In LybraConfigurator.sol, it's said that EUSD, peUSD tokens can be only initialized once but they're not initialized in the constructor and not marked as immutable. It's better to initialize something only for one time in the constructor and mark as immutable. Technically, they are initialized once but syntactically they can be initialized more times as they are not immutable.

Code snippet:

https://github.com/code-423n4/2023-06-lybra/blob/main/contracts/lybra/configuration/LybraConfigurator.sol#L54 https://github.com/code-423n4/2023-06-lybra/blob/main/contracts/lybra/configuration/LybraConfigurator.sol#L55

#0 - c4-pre-sort

2023-07-27T19:46:38Z

JeffCX marked the issue as high quality report

#1 - c4-judge

2023-07-27T23:56:53Z

0xean marked the issue as grade-b

#2 - c4-sponsor

2023-07-29T10:10:39Z

LybraFinance marked the issue as sponsor acknowledged

Findings Information

🌟 Selected for report: Sathish9098

Also found by: 0x3b, 0xbrett8571, ABAIKUNANBAEV, K42, MrPotatoMagic, hl_, ktg, peanuts, solsaver

Labels

analysis-advanced
grade-b
satisfactory
sponsor confirmed
A-08

Awards

64.5593 USDC - $64.56

External Links

Link to GitHub issue

Architecture recommendations:

  1. The user has to automatically calculate his amount to be above the necessary collateralization ratio. This can be seen in depositAssetToMint() and depositEtherToMint() where user provides mintAmount and then the functions call internal _mintEUSD() and _checkHealth() in it correspondingly. _checkHealth() checks whether the collateralization ratio of newly minted amount is above the lower limit. It's not very convenient for the users to calculate this amount by themselves and it's more likely for them to make a slight mistake after which the function will be reverted due to _checkHealth() revert. So one of the suggestions will be change the way deposit functions work and make the mechanism for automatic calculation of minted amount according to the collateral provided so it's above the collateralization ratio.

Code snipppet:

depositAssetToMint(): https://github.com/code-423n4/2023-06-lybra/blob/main/contracts/lybra/pools/base/LybraEUSDVaultBase.sol#L83

_mintEUSD():

https://github.com/code-423n4/2023-06-lybra/blob/main/contracts/lybra/pools/base/LybraEUSDVaultBase.sol#L72-87

_checkHealth():

https://github.com/code-423n4/2023-06-lybra/blob/main/contracts/lybra/pools/base/LybraEUSDVaultBase.sol#L291-293

  1. There is no any economic incentive for a user to deposit his collateral without minting tokens. This means that there is no point to make the mintAmount parameter that's provided by the user. If mintAmount == 0, it means that the collateral provided will just be "stuck" in the contract and not used anyhow until it can be withdrawn after 3 days period. But the purpose of the protocol is to attract collateral and mint interest-bearing stablecoin. So there is no any sense in providing mintAmount == 0 and also in the check whether mintAmount > 0 or not. The suggestion here is just to allow user to provide only assetAmount and then the protocol itself will calculate mintAmount for this particular assetAmount.

Code snippet:

mintAmount parameter:

https://github.com/code-423n4/2023-06-lybra/blob/main/contracts/lybra/pools/base/LybraEUSDVaultBase.sol#L72

mintAmount check:

https://github.com/code-423n4/2023-06-lybra/blob/main/contracts/lybra/pools/base/LybraEUSDVaultBase.sol#L82-84

  1. It's better for the protocol to have the ability to make flexible changes to the badCollateralRatio value (one of my findings). At the moment it's in between 130 and 150% and cannot be higher than 150% as determined by the require statement:

https://github.com/code-423n4/2023-06-lybra/blob/main/contracts/lybra/configuration/LybraConfigurator.sol#L127

This means that the user will be heavily subjected to liquidations due to slight market fluctuations. It's better to have some lower limit but it's better not to have higher limit so the user can overcollateralize the minting.

Centralization risks:

  1. The DAO can just deactivate any existing vault any time by calling setMintVault().

Code snippet:

https://github.com/code-423n4/2023-06-lybra/blob/main/contracts/lybra/pools/base/LybraEUSDVaultBase.sol#L109-111

  1. The DAO can manipulate the total supply by changing the maxSupply - this can affect the price of the stablecoin and potentially create some deviations. If the DAO is a malicious actor, it can make supply infinite.

Code snippet: https://github.com/code-423n4/2023-06-lybra/blob/main/contracts/lybra/configuration/LybraConfigurator.sol#L120

  1. The DAO can also stop the repayment functionality (this is related to my finding) while the users are eligble for liquidations. This should not be the case for the protocol and it's recommended not to have this function and if there is one, make the mechanism so that it's used only in the case of critical emergency.

Code snippet: https://github.com/code-423n4/2023-06-lybra/blob/main/contracts/lybra/configuration/LybraConfigurator.sol#L158-160

Time spent:

10 hours

#0 - c4-sponsor

2023-07-27T08:36:13Z

LybraFinance marked the issue as sponsor confirmed

#1 - c4-judge

2023-07-28T17:09:26Z

0xean marked the issue as grade-b

#2 - c4-judge

2023-07-28T18:36:42Z

0xean marked the issue as satisfactory

AuditHub

A portfolio for auditors, a security profile for protocols, a hub for web3 security.

Built bymalatrax © 2024

Auditors

Browse

Contests

Browse

Get in touch

ContactTwitter