Open zlsecure3 opened 1 year ago
submission_id:1772394099
review_type:GRADING
result: TBD-yes,no
rating: TBD-123
comment: TBD-Rejected,Accepted by Secure3.
severity: TBD-Critical,Medium,Low,Informational
category:
description:
submission_id:1772394099
review_type:CLIENT_FEEDBACK
result: TBD-yes,no
severity: TBD-Critical,Medium,Low,Informational
comment:
submission_id:1772394099
review_type:CLIENT_FEEDBACK_DECISION
result: TBD-yes,no,yes-honored,no-honored
severity: TBD-Critical,Medium,Low,Informational
comment:
subject
handling of
MarketStatus.FORBIDDEN
is unsound inFuturesLogic::getDeleverageObject()
functiondescription
If
marketConfig.getStatus() == DataTypes.MarketStatus.FORBIDDEN
, the aboverequire
statement won't be check, which means it's possible that the sknewness becomes even larger orabsSkewness
has not overceededskewnessSoftCap
.And the comment of
deleverage
saysdeleverage
is supposed to be called when the market isFORBIDDEN
, which doesn't match the implementation.recommendation
Make the comment and implementation consistent.
locations
severity
Medium
damage
exploitability
category
Logical
system_generated: auditor:alansh submission_id:1772394099