Skip to content

Commit

Permalink
Merge pull request #21 from lombard-finance/feat/audit-fix
Browse files Browse the repository at this point in the history 
save decimals info on initialize
  • Loading branch information
@hashxtree
hashxtree authored Oct 9, 2024
2 parents acf596f + 82ffd0c commit 6e5e9cd
Show file tree
Hide file tree
Showing 2 changed files with 24 additions and 11 deletions.
30 changes: 22 additions & 8 deletions contracts/pmm/BTCB/BTCB.sol
View file
Original file line number Diff line number Diff line change
Expand Up @@ -19,14 +19,16 @@ contract BTCBPMM is PausableUpgradeable, AccessControlUpgradeable {

struct PMMStorage {
IERC20Metadata btcb;
ILBTC lbtc;
ILBTC lbtc;
uint256 multiplier;
uint256 divider;

uint256 stakeLimit;
uint256 totalStake;
address withdrawAddress;
uint16 relativeFee;
}

bytes32 public constant PAUSER_ROLE = keccak256("PAUSER_ROLE");

// keccak256(abi.encode(uint256(keccak256("lombardfinance.storage.BTCBPMM")) - 1)) & ~bytes32(uint256(0xff))
Expand All @@ -51,10 +53,20 @@ contract BTCBPMM is PausableUpgradeable, AccessControlUpgradeable {
PMMStorage storage $ = _getPMMStorage();
$.stakeLimit = _stakeLimit;
$.withdrawAddress = withdrawAddress;

$.lbtc = ILBTC(_lbtc);
$.btcb = IERC20Metadata(_btcb);
$.relativeFee = _relativeFee;

uint256 lbtcDecimals = $.lbtc.decimals();
uint256 btcbDecimals = $.btcb.decimals();
if(lbtcDecimals <= btcbDecimals) {
$.divider = 10 ** (btcbDecimals - lbtcDecimals);
$.multiplier = 1;
} else {
$.multiplier = 10 ** (lbtcDecimals - btcbDecimals);
$.divider = 1;
}
}

function initialize(address _lbtc, address _btcb, address admin,uint256 _stakeLimit, address withdrawAddress, uint16 _relativeFee) external initializer {
Expand All @@ -69,8 +81,10 @@ contract BTCBPMM is PausableUpgradeable, AccessControlUpgradeable {
ILBTC lbtc = $.lbtc;
IERC20Metadata btcb = $.btcb;

uint256 decimalsDifference = 10 ** (btcb.decimals() - lbtc.decimals());
uint256 amountLBTC = (amount / decimalsDifference);
uint256 multiplier = $.multiplier;
uint256 divider = $.divider;
uint256 amountLBTC = (amount * multiplier / divider);
uint256 amountBTCB = (amountLBTC * divider / multiplier);
if(amountLBTC == 0) revert ZeroAmount();

if ($.totalStake + amountLBTC > $.stakeLimit) revert StakeLimitExceeded();
Expand All @@ -79,19 +93,19 @@ contract BTCBPMM is PausableUpgradeable, AccessControlUpgradeable {
uint256 fee = FeeUtils.getRelativeFee(amountLBTC, $.relativeFee);

$.totalStake += amountLBTC;
btcb.safeTransferFrom(_msgSender(), address(this), amountLBTC * decimalsDifference);
btcb.safeTransferFrom(_msgSender(), address(this), amountBTCB);
lbtc.mint(_msgSender(), amountLBTC - fee);
lbtc.mint(address(this), fee);
}

function withdrawBTCB(uint256 amount) external whenNotPaused onlyRole(DEFAULT_ADMIN_ROLE) {
PMMStorage storage $ = _getPMMStorage();
$.btcb.transfer($.withdrawAddress, amount);
$.btcb.transfer($.withdrawAddress, amount);
}

function withdrawLBTC(uint256 amount) external whenNotPaused onlyRole(DEFAULT_ADMIN_ROLE) {
PMMStorage storage $ = _getPMMStorage();
$.lbtc.transfer($.withdrawAddress, amount);
$.lbtc.transfer($.withdrawAddress, amount);
}

function setWithdrawalAddress(address newWithdrawAddress) external onlyRole(DEFAULT_ADMIN_ROLE) {
Expand Down
5 changes: 2 additions & 3 deletions test/BTCBPMM.ts
View file
Original file line number Diff line number Diff line change
Expand Up @@ -29,6 +29,8 @@ describe("BTCBPMM", function () {
[deployer, withdrawalAddress, signer1, signer2, timeLock, pauser] = await ethers.getSigners();

btcb = await deploy<WBTCMock>("WBTCMock", "WBTCMock");
// use btcb decimals of 8
await btcb.setDecimals(18);
lbtc = await deploy<LBTC>("LBTC", "LBTC", [
ethers.hexlify(ethers.randomBytes(20)), // not relevant for BTCB tests
1000 // not relevant for BTCB tests
Expand All @@ -42,9 +44,6 @@ describe("BTCBPMM", function () {
1000 // 10%
]);

// use btcb decimals of 8
await btcb.setDecimals(18);

snapshot = await takeSnapshot();
});

Expand Down

0 comments on commit 6e5e9cd

Please sign in to comment.