- Join Sherlock Discord
- Submit findings using the issue page in your private contest repo (label issues as med or high)
- Read for more details
The contracts will be deployed on Ethereum, or any EVM-compatible network
Q: If you are integrating tokens, are you allowing only whitelisted tokens to work with the codebase or any complying with the standard? Are they assumed to have certain properties, e.g. be non-reentrant? Are there any types of weird tokens you want to integrate?
The protocol only accepts whitelisted tokens (e.g. USDC, WBTC, mTBILL, mBASIS)
Q: Are there any limitations on values set by admins (or other roles) in the codebase, including restrictions on array lengths?
All percentages should be <= 100% All percentages for fees should be also be >= 0 (except of ManageableVault::_variationTolerance - it should be > 0)
Q: Are there any limitations on values set by admins (or other roles) in protocols you integrate with, including restrictions on array lengths?
- Allowance limit per payment token. Mintint/redeeming of mToken is limited by the admin and this limit is set per input/output tokens
- Answers from DataFeed contract, that are fetched from Chainlink compatible feed, are limited by the min/max prices, that are set during the DataFeed deployment
Q: For permissioned functions, please list all checks and requirements that will be made before calling the function.
onlyRole() - Checks if the permissioned function is being called by an address with its respective admin role (i.e. M_TBILL_MINT_OPERATOR_ROLE in the case of issuance). onlyNotBlacklisted() - Checks that from and to addresses are not currently assigned the BLACKLISTED_ROLE. onlyGreenlisted() - Checks that the address is currently assigned the GREENLISTED_ROLE.
Q: Is the codebase expected to comply with any EIPs? Can there be/are there any deviations from the specification?
We strive to keep mTBILL and mBASIS as ERC20 compliant as possible.
Q: Are there any off-chain mechanisms or off-chain procedures for the protocol (keeper bots, arbitrage bots, etc.)?
In case of manual deposit/redemptions requests, the conversion of tokens deposits/redemptions to/from mTBILL/mBASIS tokens and vice-versa is performed offchain. These assets are bankruptcy protected, with attestation reports posted daily on the Midas site.
No
Q: If the codebase is to be deployed on an L2, what should be the behavior of the protocol in case of sequencer issues (if applicable)? Should Sherlock assume that the Sequencer won't misbehave, including going offline?
Sherlock should assume that the Sequencer won't misbehave, including going offline.
Q: Should potential issues, like broken assumptions about function behavior, be reported if they could pose risks in future integrations, even if they might not be an issue in the context of the scope? If yes, can you elaborate on properties/invariants that should hold?
Yes. The expected functionality and invariants are explained in the following doc: https://ludicrous-rate-748.notion.site/8060186191934380800b669406f4d83c?v=35634cda6b084e2191b83f295433efdf
mTBILL and mBASIS are an accumulating, ERC20 tokens
Centralization Risk: We are aware that our management roles and processes results in a centralized system requiring trust. Converisons: mTBILL/mBASIS price oracles are centrilized, so the price posted by a permissioned actor is trusted by the design Stable Pricing: The system currently assumes that the price of one stablecoin is equal to one dollar. This is a design choice Malicious Admin: We are aware that admin addresses can change the role designations of interacting addresses and perform various tasks, such as adding and removing wallets from the Blacklist, minting and burning tokens, and altering accepted payment tokens. We are open to suggestions on methods to further restrain these roles without negatively impacting the operation flow and flexibility of the code. Minimum Deposit Check: The minimum deposit threshold is only applied to first-time depositors. This is intended, as this validation is only required for a user's first deposit. Upgrade compatibility with previous vault versions: currently deployed vaults wont be upgraded, we will deploy new vault instances with newest implementation Fees and exchange rates: the fees/exchange rates that are evolving between the standard request, and the processing are not a bug.
Q: We will report issues where the core protocol functionality is inaccessible for at least 7 days. Would you like to override this value?
N/A
Sherlock #1 https://audits.sherlock.xyz/contests/332/report
Documentation: https://docs.midas.app/ Website: https://midas.app/ X/Twitter: https://twitter.com/MidasRWA
Midas strongly encourages auditors to read the documents listed below to understand the design and behavior expectations (from the specification).
Diff PR with the last Sherlock`s audit RedDuck-Software/midas-contracts#59
Product Requirements (Specifications). Please note that discrepancies between the spec and the code can be reported as issues https://ludicrous-rate-748.notion.site/8060186191934380800b669406f4d83c?v=35634cda6b084e2191b83f295433efdf
High-level summary: main flows short description https://docs.google.com/document/d/1z3H3cAS1qBAAHqMAyD2YGmSyGzcle9-awrPT9W2NRzY/edit?usp=sharing
midas-contracts @ 4abcc5b26cb80a725132c6b21f4d03228d804a59
- midas-contracts/contracts/DepositVault.sol
- midas-contracts/contracts/RedemptionVault.sol
- midas-contracts/contracts/RedemptionVaultWithBUIDL.sol
- midas-contracts/contracts/abstract/ManageableVault.sol
- midas-contracts/contracts/abstract/WithSanctionsList.sol
- midas-contracts/contracts/access/Blacklistable.sol
- midas-contracts/contracts/access/Greenlistable.sol
- midas-contracts/contracts/access/MidasAccessControl.sol
- midas-contracts/contracts/access/MidasAccessControlRoles.sol
- midas-contracts/contracts/access/Pausable.sol
- midas-contracts/contracts/access/WithMidasAccessControl.sol
- midas-contracts/contracts/feeds/CustomAggregatorV3CompatibleFeed.sol
- midas-contracts/contracts/interfaces/IDepositVault.sol
- midas-contracts/contracts/interfaces/IMBASISRedemptionVaultWithSwapper.sol
- midas-contracts/contracts/interfaces/IManageableVault.sol
- midas-contracts/contracts/interfaces/IRedemptionVault.sol
- midas-contracts/contracts/interfaces/ISanctionsList.sol
- midas-contracts/contracts/libraries/DecimalsCorrectionLibrary.sol
- midas-contracts/contracts/mBasis/MBasisCustomAggregatorFeed.sol
- midas-contracts/contracts/mBasis/MBasisDepositVault.sol
- midas-contracts/contracts/mBasis/MBasisRedemptionVault.sol
- midas-contracts/contracts/mBasis/MBasisRedemptionVaultWithBUIDL.sol
- midas-contracts/contracts/mBasis/MBasisRedemptionVaultWithSwapper.sol
- midas-contracts/contracts/mBasis/mBASIS.sol
- midas-contracts/contracts/mTBILL/MTBillCustomAggregatorFeed.sol
- midas-contracts/contracts/mTBILL/mTBILL.sol