Comment about TUSD in fixMediatorBalance #39
Conversation
There was a problem hiding this comment.
The issue is even more general: how the system should behave if it was discovered during the very first transfer of the token that the OB contract already owns some tokens. Does it make sense to set a flag that the mediator balance is not zero at the moment of the first token transfer as so this flag will require special handling of the token when fixMediatorBalance is going to be used?
akolotov
added
audit
team-april-2021
|
I haven't known even about the second address of TUSD. But I think that such tokens exist or at least could appear at any moment.
Ok, I thought about this a bit more and it seems that there is no simple way to pay additional attention of admins that the discussed situation happens. E.g. this imbalance will occur every time when users use the second token address, not only when the very first transfer happens. So the only way to notify admins about a suspicious actions is to run an offchain code which will analyse every transfer made through OB to identify if there are several addresses serving the same token. Don't you mind to change the comment to "Before the call of this his method, it must be carefully investigated how imbalance happens in order to avoid attempt to stole the funds from a token with double addresses (e.g. TUSD accessible at both 0x8dd5fbCe2F6a956C3022bA3663759011Dd51e73E and 0x0000000000085d4780B73119b644AE5ecd22b376)" |
This update for the `master` branch contains the following set of changes: * [Improvement] Define token name suffixes at deploy time (#19), closes #18 * [Fix] Use more robust message generation in fixMediatorBalance (#23), closes #22 * [Fix] Minor refactoring and typos fixing (#24) * [Fix] Fix relayTokens for tokens supporting fees (#29) * [Fix] Add lock() checks to withdrawal handlers (#33) * [Fix] Use safeTransfer and safeMint wrappers (#34) * [Fix] Refactor readDecimals calls (#35) * [Fix] Use memory storage location modifier for variables that are processed in inline assembly (#38) * [Fix] Safe implementation of fees distribution (#40) * [Fix] Change call to staticcall for upgradeabilityOwner() (#42) * [Fix] Reduce gas cost in requestFailedMessageFix (#43) * [Other] Add publish step (#17), closes #16 * [Other] Bump contracts interfaces version to 3.0.0 (#36), closes #28 * [Other] Add a comment about required manual checks to setCustomTokenAddressPair (#37) * [Other] Comment about TUSD in fixMediatorBalance (#39) * [Other] Add a comment about if clause in _getMinterFor (#41) * [Other] Fix typos in comments (#45)
Tokens that have more than one address, through which they can be called, can be stolen when
they are bridged. An example for such a token is TUSD. The attack would work as follows:
Xhas been transferred across the bridge.Xtokens. Now the mediator balance on the native side isXfor both token addresses. However, the actual balance, when queried frombalanceOfis2*Xfor both of them.fixMediatorBalanceon the native side and withdrawXamount of tokens.Xtokens, by sending back the bridged tokens.Overall, turned
Xtokens into2*Xtokens, when ignoring fees. The attacker managed to withdraw the full amount of bridged tokens.