Liquidity Management

Gamma

DeFiFoundry

50,000 USDC

View results

Previous Next

Submission Details

Severity: low

Invalid

No Withdraw for Small Shares & Subtraction Underflow Vulnerability

m3dython

Details

No Withdraw for Small Shares:
When a user’s share is extremely small relative to the total pool, the contract calculates the withdrawable amount using a multiplication followed by a division operation. Due to integer division in Solidity, this operation may round down to zero even if the user holds a nonzero deposit. As a result, users with very small shares might not be able to withdraw any funds.
Subtraction Underflow:
In scenarios where collateralDeltaAmount is zero and feeAmount (or an additional subtraction adjustment from a negative PnL) is greater than zero, the contract will attempt to compute 0 - feeAmount. Since Solidity 0.8.4 includes built‑in overflow/underflow checks, this subtraction will trigger an underflow, automatically reverting the transaction.

Root Cause

Rounding Issue:
The proportional share calculation suffers from the inherent limitations of integer arithmetic in Solidity. Small values multiplied and then divided by a large total may round down to zero, leading to an incorrect zero-share calculation.
Unchecked Subtraction:
The contract does not validate that collateralDeltaAmount is sufficient before subtracting feeAmount (or any negative PnL adjustment), which can lead to an underflow when the fee exceeds the available collateral.

Impact

User Funds Inaccessibility:
Users with very small deposits relative to the overall pool might find that their computed withdrawable amount is zero, effectively locking their funds in the contract.
Transaction Reversion:
The subtraction underflow will cause the transaction to revert. This may prevent legitimate withdrawals or other operations from being successfully executed, resulting in a poor user experience and potential loss of confidence in the protocol.

Recommendation

Mitigate Rounding Errors:
- Implement a minimum threshold for shares or deposits, below which the contract either rounds up or aggregates with a dust pool to ensure that small deposits can be withdrawn.
- Consider using higher precision arithmetic or libraries designed to handle fractional values if necessary.
Guard Against Underflow:
- Before performing the subtraction, explicitly check that collateralDeltaAmount is greater than or equal to feeAmount (including any adjustments from negative PnL).
- Alternatively, use safe math libraries that provide clearer error messages and allow for graceful handling of underflow scenarios.
User Notification:
- Provide clear error messages or warnings to users when their deposit amounts are too small, so they understand the limitations and potential issues with very small transactions.

Proof of Concept

Below is a simplified pseudocode snippet demonstrating how the issue might occur and a suggested mitigation:

// Vulnerable proportional calculation

uint256 userAmount = (totalPoolBalance * userShares) / totalShares;

// If userShares is extremely small, userAmount might be 0 even when totalPoolBalance > 0

// Vulnerable subtraction that can underflow

uint256 collateralAfterFee = collateralDeltaAmount - feeAmount;

// If collateralDeltaAmount is 0 and feeAmount > 0, this will revert due to underflow

// Recommended mitigation: Check and handle small values and underflow

uint256 userAmountSafe = (totalPoolBalance * userShares);

if (totalShares > 0) {

userAmountSafe = userAmountSafe / totalShares;

} else {

revert("Total shares cannot be zero");

}

if (userAmountSafe == 0 && userShares > 0) {

// Optionally, handle minimal value withdrawals or aggregate dust amounts

userAmountSafe = minimumWithdrawableAmount;

}

// For subtraction, ensure safe subtraction

require(collateralDeltaAmount >= feeAmount, "Insufficient collateral for fee deduction");

uint256 collateralAfterFeeSafe = collateralDeltaAmount - feeAmount;

Updates

Lead Judging Commences

n0kto Lead Judge 7 months ago

Submission Judgement Published

Invalidated

Reason: Too generic

Assigned finding tags:

Informational or Gas

Please read the CodeHawks documentation to know which submissions are valid. If you disagree, provide a coded PoC and explain the real likelihood and the detailed impact on the mainnet without any supposition (if, it could, etc) to prove your point.

Suppositions

There is no real proof, concrete root cause, specific impact, or enough details in those submissions. Examples include: "It could happen" without specifying when, "If this impossible case happens," "Unexpected behavior," etc. Make a Proof of Concept (PoC) using external functions and realistic parameters. Do not test only the internal function where you think you found something.

Prize pool breakdown

Total prize

50,000 USDC

nSLOC

1,910

26 USDC / LOC

High Medium

47,500

Low

2,500

Live

The contest is live. Earn rewards by submitting a finding.

Judging

Submissions are being carefully reviewed by our judges.

View all submissions

Appeals

This is your time to appeal against judgements on your submissions.

Appeals Review

Appeals are being carefully reviewed by our judges.

Rewards Distribution

The contest is complete and the rewards are being distributed.

View results

Support

FAQs

Can't find an answer? Chat with us on Discord, Twitter or Linkedin.