smol-ninja
commented
1 week ago The same issue exists in depositViaBroker as well. Should we deduct 1 there as well in case fee rounds down to zero (the same problem exists in lockup too)? Or should we ignore it and let broker manage it on their side (since deposit amount is in their control)?
Reported in Codehawk audit, a user can bypass paying the protocol fee by withdrawing in smaller amounts such that 10% of it becomes 0. For example,
Thus, as a fix, round up the protocol fee to
1token if the following conditions are met:withdraw amount > 0ANDprotocol fee (10% of withdraw amount ) == 0Note: Double check that the function reverts when withdraw amount is 0 so that users do not pay a fee of 1 token when there are no tokens to withdraw.