Handling of Vault Value Calculation and Contract Balance Manipulation
Summary
The _totalAmount function in the PerpetualVault contract calculates the total value of the vault using the balanceOf method to retrieve the balance of tokens held by the contract. However, this approach can lead to inaccurate calculations, especially in cases where tokens are directly sent to the contract. This can cause discrepancies as the contract’s state variables may not reflect the updated token balance.
Vulnerability Details
The current implementation relies on the balanceOf(address(this)) method to determine the contract’s token balances for the calculation of the total vault value. This method can be manipulated if users send tokens directly to the contract (bypassing the contract’s functions), resulting in inaccurate balance tracking.
Specific Issue:
-
Direct Token Transfers to Contract: Users can send tokens directly to the contract, which does not update the internal state variables that track balances (such as
indexTokenBalanceandcollateralTokenBalance), potentially leading to an incorrect total value calculation. -
Incorrect Vault Value Calculation: If tokens are transferred directly to the contract, the contract's state does not reflect this, but the
balanceOfmethod is still called to determine the contract's balance. As a result, the total value calculation will include these tokens, which were not properly tracked by the contract. -
Loss of Precision: The calculation of the total value involves dividing by token prices (
prices.indexTokenPrice.minandprices.shortTokenPrice.min), which could cause a loss of precision, especially when dealing with large or small token amounts. This is further complicated by usingbalanceOf, which may not give an accurate snapshot when direct transfers are involved.
Impact
-
Incorrect Total Value Calculation: The reliance on
balanceOf(address(this))can lead to inaccurate calculations of the vault’s total value, especially when external users send tokens directly to the contract. This miscalculation could lead to incorrect liquidation thresholds, mispricing, or unfair reward distribution. -
Potential Exploitation: Malicious actors could manipulate the contract's total value calculation by sending tokens directly to the contract, influencing important logic such as liquidations or reward distributions.
Tools Used
Manual code review.
Recommendations
Instead of relying on
balanceOf(address(this)), maintain state variables such asindexTokenBalanceandcollateralTokenBalanceto track the contract’s token balances. Update these variables directly when tokens are transferred in or out of the contract.Modify the
_totalAmountfunction to use the internal state variables forindexTokenBalanceandcollateralTokenBalanceinstead of relying onbalanceOf(address(this)). This ensures that the total value calculation always reflects the correct, updated state.
Lead Judging Commences
invalid_collateral_balanceOf_donation
Prevent tokens from getting stuck. This is a simple donation to every shareholder, and therefore, every share has more value (profit), leading to fewer shares for future users. If this is not intended by the user, it is merely a mistake! For totalAmountBefore > amount * totalShares, Here is the worst-case scenario (with the minimum amount): first deposit 0.001000 (e4) USDC → 1e12 shares. Second deposit: 0.001 (e4) USDC * 1e12 / 0.001 (e4) USDC. So, the attacker would need to donate 1e16 tokens, meaning 1e10 USDC → 10 billion $. Even in the worst case, it's informational.
Prize pool breakdown
Live
The contest is live. Earn rewards by submitting a finding.
Appeals
This is your time to appeal against judgements on your submissions.
Appeals Review
Appeals are being carefully reviewed by our judges.