Skip to content

Latest commit

 

History

History
239 lines (191 loc) · 13.1 KB

README.md

File metadata and controls

239 lines (191 loc) · 13.1 KB

Concrete audit details

  • Total Prize Pool: $112,500 in USDC
    • HM awards: $72,480 in USDC
    • QA awards: $3,020 in USDC
    • Judge awards: $8,500 in USDC
    • Validator awards: $5,500 USDC
    • Scout awards: $500 in USDC
    • Update audit: $22,500 in USDC*
  • Read our guidelines for more details
  • Starts November 15, 2024 20:00 UTC
  • Ends November 29, 2024 20:00 UTC

ℹ️ This audit will be followed by an update audit focused on fixes from this scope with a total prize pool of $22,500 in USDC.

Note re: risk level upgrades/downgrades

Two important notes about judging phase risk adjustments for this audit:

  • High- or Medium-risk submissions downgraded to Low-risk (QA)) will be ineligible for awards.
  • Upgrading a Low-risk finding from a QA report to a Medium- or High-risk finding is not supported.

As such, wardens are encouraged to select the appropriate risk level carefully during the submission phase.

Automated Findings / Publicly Known Issues

The 4naly3er report can be found here.

Slither's output can be found here.

Note for C4 wardens: Anything included in this Automated Findings / Publicly Known Issues section is considered a publicly known issue and is ineligible for awards.

Overview

Concrete is a blockchain protocol that allows DeFi users to optimize on capital efficiency by protecting leveraged positions against collateral depreciation and by offering attractive yield opportunities for liquidity providers.

Links


Scope

See scope.txt

Files in scope

File code
src/vault/ConcreteMultiStrategyVault.sol 598
src/claimRouter/ClaimRouter.sol 246
src/strategies/StrategyBase.sol 212
src/libraries/MultiStrategyVaultHelper.sol 209
src/managers/RewardManager.sol 184
src/strategies/Silo/SiloV1Strategy.sol 130
src/managers/VaultManager.sol 128
src/registries/TokenRegistry.sol 125
src/queue/WithdrawalQueue.sol 122
src/swapper/Swapper.sol 104
src/strategies/Silo/EasyMathV2.sol 95
src/strategies/Radiant/RadiantV2Strategy.sol 89
src/strategies/ProtectStrategy/ProtectStrategy.sol 82
src/registries/VaultRegistry.sol 74
src/strategies/Aave/IAaveV3.sol 74
src/strategies/Aave/AaveV3Strategy.sol 73
src/strategies/compoundV3/CompoundV3Strategy.sol 73
src/strategies/Morpho/MorphoVaultStrategy.sol 68
src/swapper/OraclePlug.sol 68
src/interfaces/Errors.sol 67
src/strategies/compoundV3/ICompoundV3.sol 62
src/interfaces/IConcreteMultiStrategyVault.sol 55
src/managers/DeploymentManager.sol 50
src/registries/ImplementationRegistry.sol 50
src/strategies/Aave/DataTypes.sol 45
src/strategies/Radiant/DataTypes.sol 28
src/strategies/Radiant/IRadiantV2.sol 26
src/factories/VaultFactory.sol 25
src/interfaces/ITokenRegistry.sol 25
src/strategies/Silo/ISiloV1.sol 24
src/interfaces/DataTypes.sol 23
src/interfaces/IClaimRouter.sol 18
src/strategies/Silo/IBaseSiloV1.sol 15
src/interfaces/IRewardManager.sol 14
src/interfaces/IWithdrawalQueue.sol 12
src/interfaces/IBeraOracle.sol 11
src/interfaces/IStrategy.sol 11
src/interfaces/ISwapper.sol 11
src/interfaces/IImplementationRegistry.sol 10
src/interfaces/IProtectStrategy.sol 10
src/interfaces/IVaultDeploymentManager.sol 10
src/interfaces/IVaultRegistry.sol 10
src/interfaces/IMockProtectStrategy.sol 9
src/interfaces/IMockStrategy.sol 9
src/interfaces/IVaultFactory.sol 9
src/interfaces/Constants.sol 3
SUM: 3396

Files out of scope

See out_of_scope.txt

File
./script/Chains.sol
./script/DeployConfig.s.sol
./script/DeployEarn.s.sol
./script/DeployNewVault.s.sol
./script/Deployer.sol
./script/strategies/DeployAaveStratAndAssign.s.sol
./script/strategies/DeployBaseStratAndAssign.s.sol
./script/strategies/DeployCompoundStratAndAssign.s.sol
./script/strategies/DeployProtectStratAndAssign.s.sol
./script/strategies/DeployRadiantStratAndAssign.s.sol
./script/strategies/DeploySiloStratAndAssign.s.sol
./test/ClaimRouter.t.sol
./test/ConcreteMultiStrategyVault.t.sol
./test/DeploymentAndRegistry.t.sol
./test/RewardManager.t.sol
./test/StrategyBase.t.sol
./test/Swapper.t.sol
./test/TokenRegistry.t.sol
./test/VaultManager.t.sol
./test/strategies/AaveV3Strategy.t.sol
./test/strategies/CompoundV3Strategy.t.sol
./test/strategies/ProtectStrategy.t.sol
./test/strategies/RadiantV2Starategy.t.sol
./test/strategies/SiloV1Strategy.t.sol
./test/utils/examples/ExampleStrategyBaseImplementation.sol
./test/utils/mocks/MockBeraOracle.sol
./test/utils/mocks/MockERC20.sol
./test/utils/mocks/MockERC4626.sol
./test/utils/mocks/MockERC4626Protect.sol
./test/utils/mocks/MockERC4626Queue.sol
Totals: 30

Scoping Q & A

General questions

Are there any ERC20's in scope?: Yes

Question Answer
ERC20 used by the protocol Any (all possible ERC20s)
Test coverage 77.45%
ERC721 used by the protocol N/A
ERC777 used by the protocol N/A
ERC1155 used by the protocol N/A
Chains the protocol will be deployed on Ethereum,BSC,Other,ArbitrumCorn
Berachain

|

ERC20 token behaviors in scope

Question Answer
Missing return values Out of scope
Fee on transfer In scope
Balance changes outside of transfers In scope
Upgradeability In scope
Flash minting Out of scope
Pausability In scope
Approval race protections In scope
Revert on approval to zero address In scope
Revert on zero value approvals In scope
Revert on zero value transfers In scope
Revert on transfer to the zero address In scope
Revert on large approvals and/or transfers In scope
Doesn't revert on failure In scope
Multiple token addresses In scope
Low decimals ( < 6) In scope
High decimals ( > 18) In scope
Blocklists In scope

External integrations (e.g., Uniswap) behavior in scope

Question Answer
Enabling/disabling fees (e.g. Blur disables/enables fees) Yes
Pausability (e.g. Uniswap pool gets paused) Yes
Upgradeability (e.g. Uniswap gets upgraded) Yes

EIP compliance checklist

Question Answer
ConcreteMultiStrategyVault.sol ERC4626
StrategyBase.sol ERC4626

Additional context

Main invariants

The only shareholder of strategies are multi-strategy vaults.

Attack ideas (where to focus for bugs)

  • Funds locked
  • DoS
  • Exploitation of roles
  • dust in vaults (possible reverts related to that)
  • inadvertent reverts in general

All trusted roles in the protocol

Role
Owner (multisig)

Describe any novel or unique curve logic or mathematical models implemented in the contracts

N/A

Running tests

To run the tests, clone the repository. This also downloads the dependency directly into the node_modules/@blueprint-finance/hub-and-spokes-libraries folder. Then install the node js dependencies using yarn or npm (by running yarn install or simply yarn). This will overwrite the node_modules folder, so you need to run git reset --hard to re-instanciate the dependency. Afterwards run any forge command to build, test, or generate coverage.

git clone --recurse https://github.com/code-423n4/2024-11-concrete.git
cd 2024-11-concrete
yarn install
git reset --hard 
forge install
forge build
forge test
forge coverage

Miscellaneous

Employees of Concrete and employees' family members are ineligible to participate in this audit.

Code4rena's rules cannot be overridden by the contents of this README. In case of doubt, please check with C4 staff.