Skip to content

Commit

Permalink
Add additional tests regarding issues from the Trail of Bits audit of…
Browse files Browse the repository at this point in the history 
… Balancer (#506)

* Check that pool_join-pool_exit is safe

* Verify that minimum/maximum weights are respected

* Check that total weight does not exceed maximum

* Check that all pool join/exit's raise on zero

`util::pool` raises if either `pool_amount` or `asset_amount` is zero.
This is an unfortunate result of the abstraction of `pool_join` and
`pool_exit` into `util::pool`, but it does protect the user from paying
for something they get nothing for.

The other four functions only raise an error if what the joining/exiting
user pays is zero. So this protects the LPs, but not the interacting
user.
  • Loading branch information
@maltekliemann
maltekliemann authored Apr 5, 2022
1 parent 8857318 commit 729be75
Show file tree
Hide file tree
Showing 3 changed files with 142 additions and 2 deletions.
4 changes: 3 additions & 1 deletion zrml/prediction-markets/src/tests.rs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -686,7 +686,9 @@ fn create_market_and_deploy_assets_is_identical_to_sequential_calls() {
weights
));

for (idx, amount) in amounts.into_iter().enumerate() {
for (idx, amount) in
amounts.into_iter().enumerate().filter(|(_, amount)| *amount > min_liqudity)
{
assert_ok!(Swaps::pool_join_with_exact_asset_amount(
Origin::signed(ALICE),
pool_id,
Expand Down
3 changes: 3 additions & 0 deletions zrml/swaps/src/lib.rs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -292,6 +292,7 @@ mod pallet {
pool_amount: BalanceOf<T>,
min_asset_amount: BalanceOf<T>,
) -> DispatchResult {
ensure!(pool_amount != Zero::zero(), Error::<T>::MathApproximation);
let pool = Self::pool_by_id(pool_id)?;
let pool_ref = &pool;
let who = ensure_signed(origin)?;
Expand All @@ -313,6 +314,7 @@ mod pallet {
pool.swap_fee.ok_or(Error::<T>::PoolMissingFee)?.saturated_into(),
)?
.saturated_into();
ensure!(asset_amount != Zero::zero(), Error::<T>::MathApproximation);
ensure!(asset_amount >= min_asset_amount, Error::<T>::LimitOut);
ensure!(
asset_amount
Expand Down Expand Up @@ -1554,6 +1556,7 @@ mod pallet {
asset_amount: BalanceOf<T>,
min_pool_amount: BalanceOf<T>,
) -> Result<Weight, DispatchError> {
ensure!(asset_amount != Zero::zero(), Error::<T>::MathApproximation);
let pool = Pallet::<T>::pool_by_id(pool_id)?;
let pool_ref = &pool;
let pool_account_id = Pallet::<T>::pool_account_id(pool_id);
Expand Down
137 changes: 136 additions & 1 deletion zrml/swaps/src/tests.rs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -555,7 +555,7 @@ fn out_amount_must_be_equal_or_less_than_max_out_ratio() {
}

#[test]
fn pool_amount_must_not_be_zero() {
fn pool_join_or_exit_raises_on_zero_value() {
ExtBuilder::default().build().execute_with(|| {
create_initial_pool_with_funds_for_alice(ScoringRule::CPMM, true);

Expand All @@ -568,6 +568,26 @@ fn pool_amount_must_not_be_zero() {
Swaps::pool_exit(alice_signed(), 0, 0, vec!(_1, _1, _1, _1)),
crate::Error::<Runtime>::MathApproximation
);

assert_noop!(
Swaps::pool_join_with_exact_pool_amount(alice_signed(), 0, ASSET_A, 0, 0),
crate::Error::<Runtime>::MathApproximation
);

assert_noop!(
Swaps::pool_join_with_exact_asset_amount(alice_signed(), 0, ASSET_A, 0, 0),
crate::Error::<Runtime>::MathApproximation
);

assert_noop!(
Swaps::pool_exit_with_exact_pool_amount(alice_signed(), 0, ASSET_A, 0, 0),
crate::Error::<Runtime>::MathApproximation
);

assert_noop!(
Swaps::pool_exit_with_exact_asset_amount(alice_signed(), 0, ASSET_A, 0, 0),
crate::Error::<Runtime>::MathApproximation
);
});
}

Expand Down Expand Up @@ -1096,6 +1116,121 @@ fn create_pool_fails_on_too_few_assets() {
});
}

// Macro for comparing fixed point u128.
macro_rules! assert_approx {
($left:expr, $right:expr, $precision:expr $(,)?) => {
match (&$left, &$right, &$precision) {
(left_val, right_val, precision_val) => {
let diff = if *left_val > *right_val {
*left_val - *right_val
} else {
*right_val - *left_val
};
if diff > $precision {
panic!("{} is not {}-close to {}", *left_val, *precision_val, *right_val);
}
}
}
};
}

#[test]
fn join_pool_exit_pool_does_not_create_extra_tokens() {
ExtBuilder::default().build().execute_with(|| {
create_initial_pool_with_funds_for_alice(ScoringRule::CPMM, true);

ASSETS.iter().cloned().for_each(|asset| {
let _ = Currencies::deposit(asset, &CHARLIE, _100);
});

let amount = 123_456_789_123; // Strange number to force rounding errors!
assert_ok!(Swaps::pool_join(
Origin::signed(CHARLIE),
0,
amount,
vec![_10000, _10000, _10000, _10000]
));
assert_ok!(Swaps::pool_exit(Origin::signed(CHARLIE), 0, amount, vec![0, 0, 0, 0]));

// It's not true that the balances are _exactly_ the same. But they only vary up to
// negligible precision!
let pool_account_id = Swaps::pool_account_id(0);
let precision = 30;
assert_approx!(Currencies::free_balance(ASSET_A, &pool_account_id), _100, precision);
assert_approx!(Currencies::free_balance(ASSET_B, &pool_account_id), _100, precision);
assert_approx!(Currencies::free_balance(ASSET_C, &pool_account_id), _100, precision);
assert_approx!(Currencies::free_balance(ASSET_D, &pool_account_id), _100, precision);
assert_approx!(Currencies::free_balance(ASSET_A, &CHARLIE), _100, precision);
assert_approx!(Currencies::free_balance(ASSET_B, &CHARLIE), _100, precision);
assert_approx!(Currencies::free_balance(ASSET_C, &CHARLIE), _100, precision);
assert_approx!(Currencies::free_balance(ASSET_D, &CHARLIE), _100, precision);
});
}

#[test]
fn create_pool_fails_on_weight_below_minimum_weight() {
ExtBuilder::default().build().execute_with(|| {
ASSETS.iter().cloned().for_each(|asset| {
let _ = Currencies::deposit(asset, &BOB, _100);
});
assert_noop!(
Swaps::create_pool(
BOB,
ASSETS.iter().cloned().collect(),
Some(ASSETS.last().unwrap().clone()),
0,
ScoringRule::CPMM,
Some(0),
Some(vec!(_2, <Runtime as crate::Config>::MinWeight::get() - 1, _2, _2))
),
crate::Error::<Runtime>::BelowMinimumWeight,
);
});
}

#[test]
fn create_pool_fails_on_weight_above_maximum_weight() {
ExtBuilder::default().build().execute_with(|| {
ASSETS.iter().cloned().for_each(|asset| {
let _ = Currencies::deposit(asset, &BOB, _100);
});
assert_noop!(
Swaps::create_pool(
BOB,
ASSETS.iter().cloned().collect(),
Some(ASSETS.last().unwrap().clone()),
0,
ScoringRule::CPMM,
Some(0),
Some(vec!(_2, <Runtime as crate::Config>::MaxWeight::get() + 1, _2, _2))
),
crate::Error::<Runtime>::AboveMaximumWeight,
);
});
}

#[test]
fn create_pool_fails_on_total_weight_above_maximum_total_weight() {
ExtBuilder::default().build().execute_with(|| {
ASSETS.iter().cloned().for_each(|asset| {
let _ = Currencies::deposit(asset, &BOB, _100);
});
let weight = <Runtime as crate::Config>::MaxTotalWeight::get() / 4 + 100;
assert_noop!(
Swaps::create_pool(
BOB,
ASSETS.iter().cloned().collect(),
Some(ASSETS.last().unwrap().clone()),
0,
ScoringRule::CPMM,
Some(0),
Some(vec![weight; 4]),
),
crate::Error::<Runtime>::MaxTotalWeight,
);
});
}

fn alice_signed() -> Origin {
Origin::signed(ALICE)
}
Expand Down

0 comments on commit 729be75

Please sign in to comment.