search

code-423n4 / 2022-06-putty-findings

5 stars 0 forks source link

Put option sellers can prevent exercise by specifying zero amounts, or non-existant tokens #223

Open code423n4 opened 2 years ago

code423n4 commented 2 years ago

Lines of code

https://github.com/code-423n4/2022-06-putty/blob/3b6b844bc39e897bd0bbb69897f2deff12dc3893/contracts/src/PuttyV2.sol#L453-L454

Vulnerability details

Impact

Put option buyers pay an option premium to the seller for the privilege of being able to 'put' assets to the seller and get the strike price for it rather than the current market price. If they're unable to perform the 'put', they've paid the premium for nothing, and essentially have had funds stolen from them.

Proof of Concept

If the put option seller includes in order.erc20Assets, an amount of zero for any of the assets, or specifies an asset that doesn't currently have any code at its address, the put buyer will be unable to exercise the option, and will have paid the premium for nothing:

File: contracts/src/PuttyV2.sol   #1

453               // transfer assets from exerciser to putty
454               _transferERC20sIn(order.erc20Assets, msg.sender);

https://github.com/code-423n4/2022-06-putty/blob/3b6b844bc39e897bd0bbb69897f2deff12dc3893/contracts/src/PuttyV2.sol#L453-L454

The function reverts if any amount is equal to zero, or the asset doesn't exist:

File: contracts/src/PuttyV2.sol   #2

593       function _transferERC20sIn(ERC20Asset[] memory assets, address from) internal {
594           for (uint256 i = 0; i < assets.length; i++) {
595               address token = assets[i].token;
596               uint256 tokenAmount = assets[i].tokenAmount;
597   
598               require(token.code.length > 0, "ERC20: Token is not contract");
599               require(tokenAmount > 0, "ERC20: Amount too small");
600   
601               ERC20(token).safeTransferFrom(from, address(this), tokenAmount);
602           }
603       }

https://github.com/code-423n4/2022-06-putty/blob/3b6b844bc39e897bd0bbb69897f2deff12dc3893/contracts/src/PuttyV2.sol#L593-L603

Tools Used

Code inspection

Recommended Mitigation Steps

Verify the asset amounts and addresses during fillOrder(), and allow exercise if the token no longer exists at that point in time

outdoteth commented 2 years ago

At the contract level there exists 2 possible mitigations;

1) remove the zero amount check (not feasible because it will cause another DOS issue for tokens that revert on 0 transfer) 2) check all erc20 assets are valid in fillOrder (gas tradeoff because it requires an O(n) loop to check)

Instead, the best mitigation imo is to add a check on the frontend/db level to ensure that all erc20 assets have a token amount greater than 0 and that it exists as a contract.

If users want to go lower level than the db/frontend then they must exercise their own diligence.

edit: decided to go with a 3rd option instead.

simply skip the ERC20 transfer if the amount is 0.

outdoteth commented 2 years ago

Report: Setting an erc20Asset with a zero amount or with no code at the address will result in a revert when exercising a put option

outdoteth commented 2 years ago

PR with fix: https://github.com/outdoteth/putty-v2/pull/8