Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Vault Deployment #106

Merged
merged 8 commits into from
Jun 7, 2024
Merged

Vault Deployment #106

merged 8 commits into from
Jun 7, 2024

Conversation

junkim012
Copy link
Collaborator

@junkim012 junkim012 commented May 24, 2024
edited
Loading

Notable Changes

VaultFactory msg.sender protection and VaultBytecode Separation

  • Adds msg.sender protection to the CREATE2 salt.
  • Separated out the VaultBytecode from VaultFactory due to codesize limit with the embedded Vault bytecode.

Vault _supplyToIonPool Early Exit (See Issue Below)

  • In the _supplyToIonPool iteration, if the toSupply amount is small enoough to normalize to zero and this toSupply is the last remaining bit of the user's requested deposit amount, we skip the supply to avoid the revert. This has the effect of depositing to the IDLE pool and not the IonPool specified in the loop.
  • In practice, the maximum amount that toSupply can be to truncate to zero when normalized is determined by:
    • maxBound = ceil(supplyFactor/ RAY) - 1
      • This means that if supplyFactor is between 1e27 + 1 and 2e27 - 1, then toSupply needs to be exactly 1. And in the next range 2e27 to 3e27 - 1, the toSupply needs to be exactly 2.
      • In practice, since supplyFactor will most likely never be above 2e27, the user will have to deposit an exact amount that ends up depositing exactly 1 wei as its last supply into the IonPool.
  • Unrelated, but also prevents the feeRecipient from being set to the zero address.

Issue

  • Reference issue here
  • In the _supplyToIonPool iteration, if the toSupply amount is small enoough to normalize to zero, then it throws the IonPool.InvalidMintAmount error.
    • This meant that in some cases, if the user's requested deposit assets are being supplied through the loop, and if the last remaining bit to supply led to the InvalidMintAmount error, then the loop exited without being able to decrement assets down to zero, which reverts the transaction.
    • In this rare case, the user's deposit would have reverted despite having enough available room to deposit.
  • This is not a problem in withdraw because the toWithdraw will never be zero when calling IonPool.withdraw which means the IonPool will round up and not throw InvalidBurnAmount.

@junkim012 junkim012 changed the title [FIX] Avoid InvalidMintAmount revert in Vault when supplying in loop Vault Deployment May 25, 2024
@openzeppelin-code OpenZeppelin Code
Copy link

Vault Deployment

Generated at commit: 70c0db5ea39b3d0b11d9ca3145905b2d9aa8e7db

🚨 Report Summary

Severity Level Results
Contracts Critical
High
Medium
Low
Note
Total		 2
2
0
12
39
55
Dependencies Critical
High
Medium
Low
Note
Total		 0
0
0
0
0
0

For more details view the full report in OpenZeppelin Code Inspector

@junkim012 junkim012 merged commit a073854 into master Jun 7, 2024
5 of 6 checks passed
@junkim012 junkim012 deleted the jun/vault-rounding-error branch June 7, 2024 07:44
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@junkim012