Part 2

Zaros

PerpetualsDEXFoundrySolidity

70,000 USDC

View results

Previous Next

Submission Details

Severity: low

Invalid

Calculating the amountOutMinimum of swaps onchain allows MEV sandwitch attack on the swap

kaysoft

Summary

Calculating the amountOutMinimum of swaps onchain allows MEV sandwitch attack on the swap, amountOutMinimum should be supplied as input to the function. Calculating the amountOutMinimum can be handled on the frontend.

Vulnerability Details

The swap logic of the following function calculates the amountOutMinimum onchain.

CurveAdapter.sol#executeSwapExactInputSingle(....)
CurveAdapter.sol#executeSwapExactInput(...)
UniswapV2Adapter.sol#executeSwapExactInputSingle(...)
UniswapV2Adapter.sol#executeSwapExactInput(...)
UniswapV3Adapter.sol#executeSwapExactInputSingle(...)
UniswapV3Adapter.sol#executeSwapExactInput(...)

Calculating amountOutMinimum onchain is worthless because:

The MEV attacker bots will have adjusted the price of the pool by frontrunning
After the price adjustment, then calculation of amountOutMinimum is done when executing the swap
Attacker back runs the swap to sell back to the pool to make profit

So the amountOutMinimum will be calculated from the state of an already manipulated pool before in the swap transaction. That is why it is better to calculate the amountOutMinimum offchain then passed to the swap function. Calculation of `amountOutMinimum can be handled on the frontend just like it is done on swap dapps like Uniswap.

File: UniswapV3Adapter.sol

/// inheritdoc IDexAdapter

function executeSwapExactInput(SwapExactInputPayload calldata swapPayload) external returns (uint256 amountOut) {

// transfer the tokenIn from the send to this contract

IERC20(swapPayload.tokenIn).transferFrom(msg.sender, address(this), swapPayload.amountIn);

// cache uniswap v3 swap strategy router

IUniswapV3RouterInterface swapRouter = IUniswapV3RouterInterface(uniswapV3SwapStrategyRouter);

// approve the tokenIn to the swap router

IERC20(swapPayload.tokenIn).approve(address(swapRouter), swapPayload.amountIn);

// get the expected output amount

@> uint256 expectedAmountOut = getExpectedOutput(swapPayload.tokenIn, swapPayload.tokenOut, swapPayload.amountIn);

// Calculate the minimum acceptable output based on the slippage tolerance

@> uint256 amountOutMinimum =

(expectedAmountOut * (Constants.BPS_DENOMINATOR - slippageToleranceBps)) / Constants.BPS_DENOMINATOR;

return swapRouter.exactInput(

IUniswapV3RouterInterface.ExactInputParams({

path: swapPayload.path,

recipient: swapPayload.recipient,

deadline: deadline,

amountIn: swapPayload.amountIn,

amountOutMinimum: amountOutMinimum

})

);

}

Impact

Sandwich attack by MEV bots to adjust the price in a frontrunning attack and sell back to the pool after the swap there by making profit from the adjusted price. The swap buys the loss from adjusted price.

Tools Used

Manual Review

Recommendations

Consider passing amountOutMinimum as input to the swap function. This amountOutMinimum can calculated on the frontend before sending the transaction.

Updates

Lead Judging Commences

inallhonesty Lead Judge

10 months ago

inallhonesty Lead Judge 10 months ago

Submission Judgement Published

Invalidated

Reason: Incorrect statement

Assigned finding tags:

[INVALID]On-chain slippage calculation

Prize pool breakdown

Total prize

70,000 USDC

nSLOC

3,258

21 USDC / LOC

High Medium

66,500

Low

3,500

Live

The contest is live. Earn rewards by submitting a finding.

Judging

Submissions are being carefully reviewed by our judges.

View all submissions

Appeals

This is your time to appeal against judgements on your submissions.

Appeals Review

Appeals are being carefully reviewed by our judges.

Rewards Distribution

The contest is complete and the rewards are being distributed.

View results

Support

FAQs

Can't find an answer? Chat with us on Discord, Twitter or Linkedin.

Give us feedback!