Aave DIVA Wrapper

DIVA

HardhatDeFi

15,000 USDC

View results

Previous Next

Submission Details

Severity: high

Invalid

Use of `approve` Instead of `safeIncreaseAllowance` for Collateral Token Approval in `_registerCollateralToken`

myssteeque

Description

In the _registerCollateralToken function of AaveDIVAWrapperCore.sol, the approve function is used to set unlimited allowances for the collateral token to Aave V3. While this works for standard ERC20 tokens, it can cause issues with non-standard tokens like USDT, which require the allowance to be set to zero before it can be set to a non-zero value. Using approve directly on such tokens will revert, preventing the registration of the collateral token.

The approveCollateralTokenForAave function is available to reset the allowance to unlimited, but it does not address the issue of non-standard tokens during the initial registration. Additionally, approve is susceptible to race conditions if multiple transactions try to approve tokens simultaneously.

Impact

For non-standard tokens (e.g., USDT): The function will revert, preventing the registration of the collateral token and breaking core functionality.
For standard tokens: While approve works, it is less robust and could lead to race conditions or unexpected behavior in edge cases.

This issue affects the ability to register collateral tokens, which is a critical part of the protocol's functionality. If non-standard tokens are used, the contract will fail to register them, rendering the protocol unusable for those tokens.

Tools Used

Manual review

POC/Proof Of Code

Current Code in _registerCollateralToken:

// Set unlimited approval for the collateral token to Aave V3

_collateralTokenContract.approve(_aaveV3Pool, type(uint256).max);

Steps to Reproduce:

Deploy the AaveDIVAWrapper contract.
Call registerCollateralToken with a non-standard token like USDT.
The transaction will revert because approve does not handle the non-standard behavior of USDT.

Recommended Mitigation

Replace approve with safeIncreaseAllowance for the collateral token in _registerCollateralToken. This ensures compatibility with non-standard tokens and avoids race conditions.

Updated Code:

// For collateral token (Aave)

uint256 currentAllowance = _collateralTokenContract.allowance(address(this), _aaveV3Pool);

_collateralTokenContract.safeIncreaseAllowance(_aaveV3Pool, type(uint256).max - currentAllowance);

safeIncreaseAllowance safely increases the allowance, even for non-standard tokens like USDT.
It avoids race conditions by incrementing the allowance rather than setting it directly.
It is future-proof, ensuring compatibility with a wider range of tokens.

Updates

Lead Judging Commences

bube Lead Judge 9 months ago

Submission Judgement Published

Invalidated

Reason: Known issue

Prize pool breakdown

Total prize

15,000 USDC

nSLOC

519

29 USDC / LOC

High Medium

14,000

Low

1,000

Live

The contest is live. Earn rewards by submitting a finding.

Judging

Submissions are being carefully reviewed by our judges.

View all submissions

Appeals

This is your time to appeal against judgements on your submissions.

Appeals Review

Appeals are being carefully reviewed by our judges.

Rewards Distribution

The contest is complete and the rewards are being distributed.

View results

Support

FAQs

Can't find an answer? Chat with us on Discord, Twitter or Linkedin.