Trade orders cannot be filled as SettlementBranch::fillOffchainOrders function is not implementing the documentation
Summary
SettlementBranch::fillOffchainOrders function documentation is to allow traders trading account's position (buy order), the fill price must be less than or equal to the target price, if it decreases the trading account's position (sell order), the fill price must be greater than or equal to the target price.\
SettlementBranch::fillOffchainOrders function does not perform the implementation as in the documentation. Traders would not be able to make profit because orders can not be filled.
Vulnerability Details
if the order increases the trading account's position (buy order), the fill price must be less than or // equal to the target price, if it decreases the trading account's position (sell order), the fill price // must be greater than or equal to the target price.
Impact
This can enable a malicious trader to make profit because orders can not be filled.
Tools Used
manual review plus foundry test
Recommendations
ctx.isFillPriceValid = (!ctx.isBuyOrder && ctx.offchainOrder.targetPrice <= ctx.fillPriceX18.intoUint256()) || (ctx.isBuyOrder && ctx.offchainOrder.targetPrice >= ctx.fillPriceX18.intoUint256());
Lead Judging Commences
fillOffchainOrders inverses the comparison between `fillPrice` and `targetPrice`
Prize pool breakdown
Live
The contest is live. Earn rewards by submitting a finding.
Appeals
This is your time to appeal against judgements on your submissions.
Appeals Review
Appeals are being carefully reviewed by our judges.