Platform: Code4rena
Start Date: 27/04/2023
Pot Size: $90,500 USDC
Total HM: 4
Participants: 43
Period: 7 days
Judge: GalloDaSballo
Id: 233
League: ETH
Rank: 7/43
Findings: 3
Award: $2,483.50
š Selected for report: 1
š Solo Findings: 0
š Selected for report: juancito
Also found by: MiloTruck, Ruhum, SpicyMeatball, bin2chen, evmboi32, pontifex, sashik_eth, volodya, yjrwkk
1877.11 USDC - $1,877.11
StrategyManager::slashQueuedWithdrawal() contains an indicesToSkip parameter to skip malicious strategies, as documented in the function definition:
so that, e.g., if the slashed QueuedWithdrawal contains a malicious strategy in the
strategiesarray which always reverts on calls to its 'withdraw' function, then the malicious strategy can be skipped (with the shares in effect "burned"), while the non-malicious strategies are still called as normal.
The problem is that the function does not work as expected, and indicesToSkip is in fact ignored. If the queued withdrawal contains a malicious strategy, it will make the slash always revert.
Owners won't be able to slash queued withdrawals that contain a malicious strategy.
An adversary can take advantage of this, and create withdrawal queues that won't be able to be slashed, completely defeating the slash system. The adversary can later complete the withdrawal.
The ++i; statement in StrategyManager::slashQueuedWithdrawal() is misplaced. It is only executed on the else statement:
// keeps track of the index in the `indicesToSkip` array uint256 indicesToSkipIndex = 0; uint256 strategiesLength = queuedWithdrawal.strategies.length; for (uint256 i = 0; i < strategiesLength;) { // check if the index i matches one of the indices specified in the `indicesToSkip` array if (indicesToSkipIndex < indicesToSkip.length && indicesToSkip[indicesToSkipIndex] == i) { unchecked { ++indicesToSkipIndex; } } else { if (queuedWithdrawal.strategies[i] == beaconChainETHStrategy){ //withdraw the beaconChainETH to the recipient _withdrawBeaconChainETH(queuedWithdrawal.depositor, recipient, queuedWithdrawal.shares[i]); } else { // tell the strategy to send the appropriate amount of funds to the recipient queuedWithdrawal.strategies[i].withdraw(recipient, tokens[i], queuedWithdrawal.shares[i]); } unchecked { ++i; // @audit } } }
Let's suppose that the owner tries to slash a queued withdrawal, and wants to skip the first strategy (index 0) because it is malicious and makes the whole transaction to revert.
1 . It defines indicesToSkipIndex = 0
2 . It enters the for loop starting at i = 0
3 . if (indicesToSkipIndex < indicesToSkip.length && indicesToSkip[indicesToSkipIndex] == i) will be true: 0 < 1 && 0 == 0
4 . It increments ++indicesToSkipIndex; to "skip" the malicious strategy, so indicesToSkipIndex = 1 now.
5 . It goes back to the for loop. But i hasn't been modified, so i = 0 still
6 . if (indicesToSkipIndex < indicesToSkip.length && indicesToSkip[indicesToSkipIndex] == i) will be false now: 1 < 1 && 0 == 0
7 . It will enter the else statement and attempt to slash the strategy anyway
8 . If the strategy is malicious it will revert, making it impossible to slash
9 . The adversary can later complete the withdrawal
This test shows how the indicesToSkip parameter is completely ignored.
For the sake of simplicity of the test, it uses a normal strategy, which will be slashed, proving that it ignores the indicesToSkip parameter and it indeed calls queuedWithdrawal.strategies[i].withdraw().
A malicious strategy that makes withdraw() revert would make the whole transaction revert (not shown on this test but easily checkeable as the function won't catch it).
Add this test to src/tests/StrategyManagerUnit.t.sol and run forge test -m "testSlashQueuedWithdrawal_IgnoresIndicesToSkip".
function testSlashQueuedWithdrawal_IgnoresIndicesToSkip() external { address recipient = address(this); uint256 depositAmount = 1e18; uint256 withdrawalAmount = depositAmount; bool undelegateIfPossible = false; // Deposit into strategy and queue a withdrawal (IStrategyManager.QueuedWithdrawal memory queuedWithdrawal,,) = testQueueWithdrawal_ToSelf_NotBeaconChainETH(depositAmount, withdrawalAmount, undelegateIfPossible); // Slash the delegatedOperator slasherMock.freezeOperator(queuedWithdrawal.delegatedAddress); // Keep track of the balance before the slash attempt uint256 balanceBefore = dummyToken.balanceOf(address(recipient)); // Assert that the strategies array only has one element assertEq(queuedWithdrawal.strategies.length, 1); // Set `indicesToSkip` so that it should ignore the only strategy // As it's the only element, its index is `0` uint256[] memory indicesToSkip = new uint256[](1); indicesToSkip[0] = 0; // Call `slashQueuedWithdrawal()` // This should not try to slash the only strategy the queue has, because of the defined `indicesToSkip` // But in fact it ignores `indicesToSkip` and attempts to do it anyway cheats.startPrank(strategyManager.owner()); strategyManager.slashQueuedWithdrawal(recipient, queuedWithdrawal, _arrayWithJustDummyToken(), indicesToSkip); cheats.stopPrank(); uint256 balanceAfter = dummyToken.balanceOf(address(recipient)); // The `indicesToSkip` was completely ignored, and the function attempted the slash anyway // It can be asserted due to the fact that it increased the balance require(balanceAfter == balanceBefore + withdrawalAmount, "balanceAfter != balanceBefore + withdrawalAmount"); }
Manual Review
Place the ++i outside of the if/else statement. This way it will increment each time the loop runs.
for (uint256 i = 0; i < strategiesLength;) { // check if the index i matches one of the indices specified in the `indicesToSkip` array if (indicesToSkipIndex < indicesToSkip.length && indicesToSkip[indicesToSkipIndex] == i) { unchecked { ++indicesToSkipIndex; } } else { if (queuedWithdrawal.strategies[i] == beaconChainETHStrategy){ //withdraw the beaconChainETH to the recipient _withdrawBeaconChainETH(queuedWithdrawal.depositor, recipient, queuedWithdrawal.shares[i]); } else { // tell the strategy to send the appropriate amount of funds to the recipient queuedWithdrawal.strategies[i].withdraw(recipient, tokens[i], queuedWithdrawal.shares[i]); } - unchecked { - ++i; - } } + unchecked { + ++i; + } }
Loop
#0 - 0xSorryNotSorry
2023-05-07T17:06:52Z
The issue is well demonstrated, properly formatted, contains a coded POC. Marking as HQ.
#1 - c4-pre-sort
2023-05-07T17:06:56Z
0xSorryNotSorry marked the issue as high quality report
#2 - c4-pre-sort
2023-05-09T13:07:55Z
0xSorryNotSorry marked the issue as primary issue
#3 - c4-sponsor
2023-05-12T00:37:21Z
Sidu28 marked the issue as sponsor confirmed
#4 - GalloDaSballo
2023-06-01T14:02:07Z
The Warden has shown how, due to an incorrect placement of the loop increment, malicious strategies cannot be skipped when slashing queued withdrawals
Because this breaks a core functionality of the contracts, which will also cause loss of funds, I agree with High Severity
Mitigation is straightforward
#5 - c4-judge
2023-06-01T14:02:12Z
GalloDaSballo marked the issue as selected for report
š Selected for report: ABA
Also found by: 0xWaitress, 8olidity, ABA, MiloTruck, ToonVH, bughunter007, bytes032, juancito, rvierdiiev
534.7892 USDC - $534.79
A user might want to withdraw funds from multiple strategies at the same time via queueWithdrawal().
If any of those strategies revert when trying to complete the withdrawal via completeQueuedWithdrawal(), the whole transaction will fail, and no funds from any of the other strategies would be able to be withdrawn.
An strategy may fail because of it being malicious (as described on the doc header of slashQueuedWithdrawal()), or because it may contain a bug in the withdraw() function to prevent this user or any other user from calling it.
Users won't be able to withdraw any of their queued funds from any strategy supposed to be withdrawable after the withdraw period via completeQueuedWithdrawal().
Users will be forced to re-stake the asset shares with receiveAsTokens = false, create a new queue withdrawal without the conflicting strategy, and wait again for the withdrawal period.
This can be considered a temporary freeze of funds, as the users won't be able to dispose of their assets as they should.
A conflicting strategy should not affect the ability of a user to withdraw assets from any other strategy in the platform.
StrategyManager::_completeQueuedWithdrawal() will fail when one of the strategies fail to withdraw the tokens.
The conflicting line that can revert is: queuedWithdrawal.strategies[i].withdraw()
This will prevent tokens from other strategies to be withdrawn.
if (receiveAsTokens) { require(tokens.length == queuedWithdrawal.strategies.length, "StrategyManager.completeQueuedWithdrawal: input length mismatch"); // actually withdraw the funds for (uint256 i = 0; i < strategiesLength;) { if (queuedWithdrawal.strategies[i] == beaconChainETHStrategy) { // if the strategy is the beaconchaineth strat, then withdraw through the EigenPod flow _withdrawBeaconChainETH(queuedWithdrawal.depositor, msg.sender, queuedWithdrawal.shares[i]); } else { // tell the strategy to send the appropriate amount of funds to the depositor queuedWithdrawal.strategies[i].withdraw( // @audit will make the whole transaction fail if one strategy reverts msg.sender, tokens[i], queuedWithdrawal.shares[i] ); } unchecked { ++i; } } } else { // else increase their shares for (uint256 i = 0; i < strategiesLength;) { _addShares(msg.sender, queuedWithdrawal.strategies[i], queuedWithdrawal.shares[i]); unchecked { ++i; } } }
This tests how only one conflicting strategy can revert the whole completeQueuedWithdrawal() operation, affecting the withdrawal of the assets from the other strategies.
Create a file src/test/mocks/ReverterWithdraw.sol like the following to simulate a conflicting strategy:
// SPDX-License-Identifier: BUSL-1.1 pragma solidity ^0.8.9; import "@openzeppelin/contracts/token/ERC20/IERC20.sol"; contract ReverterWithdraw { function deposit(IERC20 token, uint256 amount) external returns (uint256) { return amount; } fallback() external { revert("ReverterWithdraw: I am a contract that reverts on withdraw"); } }
Add this test to src/test/StrategyManagerUnit.t.sol and run forge test -m "testCompleteQueuedWithdrawal_FailsWithConflictingStrategy".
Include import "../mocks/ReverterWithdraw.sol"; at the start of the file.
function testCompleteQueuedWithdrawal_FailsWithConflictingStrategy() external { // Include `import "../mocks/ReverterWithdraw.sol";` at the start of the file // Create a strategy that will revert on `withdraw()` ReverterWithdraw reverterWithdraw = new ReverterWithdraw(); StrategyWrapper reverterStrat = StrategyWrapper(address(reverterWithdraw)); // Whitelist the strategy for deposit cheats.startPrank(strategyManager.owner()); IStrategy[] memory strategies = new IStrategy[](1); strategies[0] = reverterStrat; strategyManager.addStrategiesToDepositWhitelist(strategies); cheats.stopPrank(); uint256 depositAmount = 1e18; // User deposits into both the conflicting strategy and another one strategyManager.depositIntoStrategy(reverterStrat, dummyToken, depositAmount); strategyManager.depositIntoStrategy(dummyStrat, dummyToken, depositAmount); // Define some variables for queueing the withdrawal uint256 withdrawalAmount = 1e9; address staker = address(this); address withdrawer = address(this); uint256[] memory strategyIndexes = new uint256[](2); strategyIndexes[0] = 0; strategyIndexes[1] = 1; IStrategy[] memory strategyArray = new IStrategy[](2); strategyArray[0] = reverterStrat; strategyArray[1] = dummyStrat; IERC20[] memory tokensArray = new IERC20[](2); tokensArray[0] = dummyToken; tokensArray[1] = dummyToken; uint256[] memory sharesArray = new uint256[](2); sharesArray[0] = withdrawalAmount; sharesArray[1] = withdrawalAmount; IStrategyManager.WithdrawerAndNonce memory withdrawerAndNonce = IStrategyManager.WithdrawerAndNonce({ withdrawer: withdrawer, nonce: uint96(strategyManager.numWithdrawalsQueued(staker)) }); IStrategyManager.QueuedWithdrawal memory queuedWithdrawal = IStrategyManager.QueuedWithdrawal({ strategies: strategyArray, shares: sharesArray, depositor: staker, withdrawerAndNonce: withdrawerAndNonce, withdrawalStartBlock: uint32(block.number), delegatedAddress: strategyManager.delegation().delegatedTo(staker) } ); // User queues a withdrawal for assets in both strategies strategyManager.queueWithdrawal(strategyIndexes, queuedWithdrawal.strategies, queuedWithdrawal.shares, withdrawer, false); // When the user tries to complete the withdrawal, it reverts because of the conflicting strategy // The user will be forced to re-stake the whole position, call another queue withdrawal and wait another period vm.expectRevert("ReverterWithdraw: I am a contract that reverts on withdraw"); strategyManager.completeQueuedWithdrawal(queuedWithdrawal, tokensArray, /*middlewareTimesIndex*/ 0, /*receiveAsTokens*/ true); }
Manual Review
Add an uint256[] indicesToSkip parameter to _completeQueuedWithdrawal() to skip conflicting strategies (just like it is already done in slashQueuedWithdrawal()).
Skipped strategies can be re-staked to be retried again later, but the rest of the strategies will be withdrawable immediately.
+ function _completeQueuedWithdrawal(uint256[] calldata indicesToSkip, ...) ... { + uint256 indicesToSkipIndex = 0; if (receiveAsTokens) { require(tokens.length == queuedWithdrawal.strategies.length, "StrategyManager.completeQueuedWithdrawal: input length mismatch"); // actually withdraw the funds for (uint256 i = 0; i < strategiesLength;) { if (queuedWithdrawal.strategies[i] == beaconChainETHStrategy) { // if the strategy is the beaconchaineth strat, then withdraw through the EigenPod flow _withdrawBeaconChainETH(queuedWithdrawal.depositor, msg.sender, queuedWithdrawal.shares[i]); + } else if (indicesToSkipIndex < indicesToSkip.length && indicesToSkip[indicesToSkipIndex] == i) { + _addShares(msg.sender, queuedWithdrawal.strategies[i], queuedWithdrawal.shares[i]); + unchecked { + ++indicesToSkipIndex; + } } else { // tell the strategy to send the appropriate amount of funds to the depositor queuedWithdrawal.strategies[i].withdraw( msg.sender, tokens[i], queuedWithdrawal.shares[i] ); } unchecked { ++i; } } } else { // else increase their shares for (uint256 i = 0; i < strategiesLength;) { _addShares(msg.sender, queuedWithdrawal.strategies[i], queuedWithdrawal.shares[i]); unchecked { ++i; } } }
Token-Transfer
#0 - c4-pre-sort
2023-05-09T13:39:05Z
0xSorryNotSorry marked the issue as duplicate of #132
#1 - c4-judge
2023-06-08T12:26:26Z
GalloDaSballo marked the issue as satisfactory
š Selected for report: volodya
Also found by: 0xWaitress, 0xnev, ABA, Aymen0909, Cyfrin, QiuhaoLi, RaymondFam, btk, bughunter007, ihtishamsudo, juancito, libratus, niser93, sashik_eth
71.6048 USDC - $71.60
ā¢ [L-1] queueWithdrawal() and slashShares() can revert with an out of bounds error if strategies are removed
ā¢ [L-2] slashQueuedWithdrawal() can leave stuck assets in strategies if passed an incorrect indicesToSkip
ā¢ [L-3] Allowing anyone to claim delayed withdrawals on behalf of the users can be detrimental to them
ā¢ [L-4] Missing events for important actions
ā¢ [L-5] _claimDelayedWithdrawals emits "empty" events when maxNumberOfDelayedWithdrawalsToClaim == 0
queueWithdrawal() and slashShares() can revert with an out of bounds error if strategies are removedIf an strategy is removed from the user strategies array, it will "change" the index of the following strategies, leading to the possibility of the function trying to get the data from an out of bounds index.
queueWithdrawal() and slashShares() will revert depending on the strategyIndexes passed. The user will have to call the functions with one strategy at a time or calculate the correct final indexes.
Both queueWithdrawal() and slashShares() call _removeShares() passing to it an strategyIndexes array, with the expected positions of the strategies.
If the strategy has no more shares, _removeShares() proceeds to remove the strategy from the list:
if (userShares == 0) { _removeStrategyFromStakerStrategyList(depositor, strategyIndex, strategy); // return true in the event that the strategy was removed from stakerStrategyList[depositor] return true; }
_removeStrategyFromStakerStrategyList() contains this line:
if (stakerStrategyList[depositor][strategyIndex] == strategy) { // ... } // ... stakerStrategyList[depositor].pop();
Let's suppose that the users passed [0, 1] as the strategyIndexes array, as those are the indexes before calling the function.
If the strategy with strategyIndex == 0 is removed, the array length will be now 1.
This will make the line stakerStrategyList[depositor][strategyIndex] revert with index out of bounds as the strategyIndex for the second strategy to remove was 1, which is out of bounds for the new array length.
The user would have to mitigate the issue by calculating the actual indexes, and pass strategyIndexes = [0, 0], for example.
Add this file to src/test/StrategyManagerUnit.t.sol and run forge test -m "testQueueWithdrawal_FailsOutOfBounds":
function testQueueWithdrawal_FailsOutOfBounds() external { StrategyWrapper dummyStrat2 = new StrategyWrapper(strategyManager, dummyToken); // Whitelist the strategy for deposit cheats.startPrank(strategyManager.owner()); IStrategy[] memory strategies = new IStrategy[](1); strategies[0] = dummyStrat2; strategyManager.addStrategiesToDepositWhitelist(strategies); cheats.stopPrank(); uint256 depositAmount = 1e18; // User deposits into both the conflicting strategy and another one strategyManager.depositIntoStrategy(dummyStrat, dummyToken, depositAmount); strategyManager.depositIntoStrategy(dummyStrat2, dummyToken, depositAmount); // Define some variables for queueing the withdrawal uint256 withdrawalAmount = 1e18; address staker = address(this); address withdrawer = address(this); uint256[] memory strategyIndexes = new uint256[](2); strategyIndexes[0] = 0; strategyIndexes[1] = 1; // @audit This will make the tx fail with out of bounds IStrategy[] memory strategyArray = new IStrategy[](2); strategyArray[0] = dummyStrat; strategyArray[1] = dummyStrat2; IERC20[] memory tokensArray = new IERC20[](2); tokensArray[0] = dummyToken; tokensArray[1] = dummyToken; uint256[] memory sharesArray = new uint256[](2); sharesArray[0] = withdrawalAmount; sharesArray[1] = withdrawalAmount; IStrategyManager.WithdrawerAndNonce memory withdrawerAndNonce = IStrategyManager.WithdrawerAndNonce({ withdrawer: withdrawer, nonce: uint96(strategyManager.numWithdrawalsQueued(staker)) }); IStrategyManager.QueuedWithdrawal memory queuedWithdrawal = IStrategyManager.QueuedWithdrawal({ strategies: strategyArray, shares: sharesArray, depositor: staker, withdrawerAndNonce: withdrawerAndNonce, withdrawalStartBlock: uint32(block.number), delegatedAddress: strategyManager.delegation().delegatedTo(staker) } ); // Reverts with out of bounds when trying to queue the whole amount of both strategies and remove them from the list cheats.expectRevert(); strategyManager.queueWithdrawal(strategyIndexes, queuedWithdrawal.strategies, queuedWithdrawal.shares, withdrawer, false); }
Manual Review
Check that the strategyIndex is less than the stakerStrategyList length in _removeStrategyFromStakerStrategyList() and loop through all of the strategies in case it is out of bounds.
slashQueuedWithdrawal() can leave stuck assets in strategies if passed an incorrect indicesToSkipindicesToSkip is meant to be used to skip malicious strategies that may revert.
The problem is that once skipped those strategies cannot be retried to be slashed.
If the user calling the function skips a legit strategy, it will remain orphan, with their corresponding assets stuck in it.
Assets from strategies in orphan queued withdrawals will be stuck on the corresponding strategy contract.
They won't be able to be slashed.
slashQueuedWithdrawal() sets withdrawalRootPending[withdrawalRoot] = false;, so that withdrawalRoot will be unusable in the protocol in the future.
slashShares won't be effective, as the shares were previously removed in the queueWithdrawal() function, so they can't be slashed.
So, any skipped strategy in the queued withdrawal will become unslashable in the future.
function slashQueuedWithdrawal(address recipient, QueuedWithdrawal calldata queuedWithdrawal, IERC20[] calldata tokens, uint256[] calldata indicesToSkip) external onlyOwner onlyFrozen(queuedWithdrawal.delegatedAddress) nonReentrant { require(tokens.length == queuedWithdrawal.strategies.length, "StrategyManager.slashQueuedWithdrawal: input length mismatch"); // find the withdrawalRoot bytes32 withdrawalRoot = calculateWithdrawalRoot(queuedWithdrawal); // verify that the queued withdrawal is pending require( withdrawalRootPending[withdrawalRoot], "StrategyManager.slashQueuedWithdrawal: withdrawal is not pending" ); // reset the storage slot in mapping of queued withdrawals withdrawalRootPending[withdrawalRoot] = false; // @audit makes `withdrawalRoot` unusable in the future // keeps track of the index in the `indicesToSkip` array uint256 indicesToSkipIndex = 0; uint256 strategiesLength = queuedWithdrawal.strategies.length; for (uint256 i = 0; i < strategiesLength;) { // check if the index i matches one of the indices specified in the `indicesToSkip` array if (indicesToSkipIndex < indicesToSkip.length && indicesToSkip[indicesToSkipIndex] == i) { unchecked { ++indicesToSkipIndex; } } else { if (queuedWithdrawal.strategies[i] == beaconChainETHStrategy){ //withdraw the beaconChainETH to the recipient _withdrawBeaconChainETH(queuedWithdrawal.depositor, recipient, queuedWithdrawal.shares[i]); } else { // tell the strategy to send the appropriate amount of funds to the recipient // @audit This is the only chance to slash the user for this strategy queuedWithdrawal.strategies[i].withdraw(recipient, tokens[i], queuedWithdrawal.shares[i]); } unchecked { ++i; } } } }
Manual Review
Add skipped strategies from slashQueuedWithdrawal() to a map, so that they can be slashed later if they were skipped by mistake.
It can also help with strategies that may have a momentary revert on withdraw(), but can eventually make it work again.
For accounting purposes, taxes, or any other legal implication, user may decide to postpone their withdrawals for an upcoming date.
Allowing anyone to withdraw on their behalf would be in detriment of the mentioned reasons.
Consider removing the DelayedWithdrawalRouter::claimDelayedWithdrawals(address recipient, uint256 maxNumberOfDelayedWithdrawalsToClaim) function:
/** * @notice Called in order to withdraw delayed withdrawals made to the `recipient` that have passed the `withdrawalDelayBlocks` period. * @param recipient The address to claim delayedWithdrawals for. * @param maxNumberOfDelayedWithdrawalsToClaim Used to limit the maximum number of delayedWithdrawals to loop through claiming. * @dev * WARNING: Note that the caller of this function cannot control where the funds are sent, but they can control when the * funds are sent once the withdrawal becomes claimable. */ function claimDelayedWithdrawals(address recipient, uint256 maxNumberOfDelayedWithdrawalsToClaim) external nonReentrant onlyWhenNotPaused(PAUSED_DELAYED_WITHDRAWAL_CLAIMS) { _claimDelayedWithdrawals(recipient, maxNumberOfDelayedWithdrawalsToClaim); }
Some important functions in StrategyManager.sol do not trigger an event that allows to track them.
Consider adding relevant events to the functions:
slashShares(), slashQueuedWithdrawal() to keep track of slashes.
addStrategiesToDepositWhitelist() and removeStrategiesFromDepositWhitelist for users an other protocols to keep track of changes in whitelisted strategies.
_claimDelayedWithdrawals emits "empty" events when maxNumberOfDelayedWithdrawalsToClaim == 0The _claimDelayedWithdrawals allowsmaxNumberOfDelayedWithdrawalsToClaim == 0, which will bypass the while statement, and emit an "empty" event.
In order to keep events emission as clean as possible, consider checking that maxNumberOfDelayedWithdrawalsToClaim != 0
function _claimDelayedWithdrawals(address recipient, uint256 maxNumberOfDelayedWithdrawalsToClaim) internal { uint256 amountToSend = 0; uint256 delayedWithdrawalsCompletedBefore = _userWithdrawals[recipient].delayedWithdrawalsCompleted; uint256 _userWithdrawalsLength = _userWithdrawals[recipient].delayedWithdrawals.length; uint256 i = 0; while (i < maxNumberOfDelayedWithdrawalsToClaim && (delayedWithdrawalsCompletedBefore + i) < _userWithdrawalsLength) { // copy delayedWithdrawal from storage to memory DelayedWithdrawal memory delayedWithdrawal = _userWithdrawals[recipient].delayedWithdrawals[delayedWithdrawalsCompletedBefore + i]; // check if delayedWithdrawal can be claimed. break the loop as soon as a delayedWithdrawal cannot be claimed if (block.number < delayedWithdrawal.blockCreated + withdrawalDelayBlocks) { break; } // otherwise, the delayedWithdrawal can be claimed, in which case we increase the amountToSend and increment i amountToSend += delayedWithdrawal.amount; // increment i to account for the delayedWithdrawal being claimed unchecked { ++i; } } // mark the i delayedWithdrawals as claimed _userWithdrawals[recipient].delayedWithdrawalsCompleted = delayedWithdrawalsCompletedBefore + i; // actually send the ETH if (amountToSend != 0) { AddressUpgradeable.sendValue(payable(recipient), amountToSend); } emit DelayedWithdrawalsClaimed(recipient, amountToSend, delayedWithdrawalsCompletedBefore + i); }
i as the increment variablej is usually used when there is already a previous i variable being used.
Consider using i in _removeStrategyFromStakerStrategyList(), as it is not previously used:
function _removeStrategyFromStakerStrategyList(address depositor, uint256 strategyIndex, IStrategy strategy) internal { // if the strategy matches with the strategy index provided if (stakerStrategyList[depositor][strategyIndex] == strategy) { // replace the strategy with the last strategy in the list stakerStrategyList[depositor][strategyIndex] = stakerStrategyList[depositor][stakerStrategyList[depositor].length - 1]; } else { //loop through all of the strategies, find the right one, then replace uint256 stratsLength = stakerStrategyList[depositor].length; uint256 j = 0; for (; j < stratsLength;) { if (stakerStrategyList[depositor][j] == strategy) { //replace the strategy with the last strategy in the list stakerStrategyList[depositor][j] = stakerStrategyList[depositor][stakerStrategyList[depositor].length - 1]; break; } unchecked { ++j; } } // if we didn't find the strategy, revert require(j != stratsLength, "StrategyManager._removeStrategyFromStakerStrategyList: strategy not found"); } // pop off the last entry in the list of strategies stakerStrategyList[depositor].pop(); }
#0 - c4-pre-sort
2023-05-09T14:34:21Z
0xSorryNotSorry marked the issue as high quality report
#1 - GalloDaSballo
2023-06-02T09:10:37Z
ā¢ [L-1] queueWithdrawal() and slashShares() can revert with an out of bounds error if strategies are removed
R
ā¢ [L-2] slashQueuedWithdrawal() can leave stuck assets in strategies if passed an incorrect indicesToSkip
L, interesting
ā¢ [L-3] Allowing anyone to claim delayed withdrawals on behalf of the users can be detrimental to them
I, they can just not queue it
ā¢ [L-4] Missing events for important actions
NC
ā¢ [L-5] _claimDelayedWithdrawals emits "empty" events when maxNumberOfDelayedWithdrawalsToClaim == 0
NC
[NC-1] Use i as the increment variable I, they are replaceable i,j is very common in math
1L 1R 1NC
#2 - c4-judge
2023-06-02T09:38:48Z
GalloDaSballo marked the issue as grade-b