WOETH yield buckets

[sparrowDom]

This is the third attempt at the implementation of limiting the yield increase and, consequen the exchange rate between WOETH and OETH. The other 2:

• WOETH: Donation attack prevention #2106
• WOETH - Fixed yield rate each day #2421

This approach:

• does the internal accounting of credits the same way WOETH: Donation attack prevention #2106 does it
• the WOETH exchange rate is in sync with OETH yield as long as it doesn't surpass the 91% yearly yield rate. In such case the yield is delayed and will be distributed over the next yield period. Which lasts 23 hours
• similarly to WOETH - Fixed yield rate each day #2421 this PR requires interaction with the contract in order to increase the exchange rate / start new yield period by calling increaseYieldLimit()

To be completed before internal review begins:

• The contract code is complete
• Executable deployment file
• Fork tests that test after the deployment file runs
• Unit tests *if needed
• The owner has done a full checklist review of the code + tests

Internal review:

• Two approvals by internal reviewers

[github-actions]

	Warnings
⚠️	👀 This PR needs at least 2 reviewers

Generated by 🚫 dangerJS against b68269d

[codecov]

Codecov Report

Attention: Patch coverage is 84.21053% with 3 lines in your changes missing coverage. Please review.

Please upload report for BASE (sparrowDom/woeth_hack_proof@79af39f). Learn more about missing BASE report.

Files with missing lines	Patch %	Lines
contracts/contracts/token/WOETH.sol	84.21%	3 Missing ⚠️

Additional details and impacted files

@@                      Coverage Diff                       @@
##             sparrowDom/woeth_hack_proof    #2447   +/-   ##
==============================================================
  Coverage                               ?   47.22%           
==============================================================
  Files                                  ?      100           
  Lines                                  ?     4898           
  Branches                               ?     1294           
==============================================================
  Hits                                   ?     2313           
  Misses                                 ?     2581           
  Partials                               ?        4           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[DanielVF]

I'm not sure if this is a problem, but I have vague dread about updating this in the middle of a transfer.

I don't think that an external integration would expect the value of WOETH to change before and after a transfer. Might cause exploitable bugs in other people's code.

In the asset drip implementation, updating things was okay, since any changes only took effect on the next block, and this everyone using the system had a consistent exchange rate for the entire block. I don't know that we have to have one exchange rate per block, but changing during a transfer feels sketch.

[sparrowDom]

Hmm that's a good point. One might expect the following:

woeth.balanceOf(micah) // 5.0 units
woeth.connect(micah).transfer(somewhere, 3 units)
woeth.balanceOf(micah) // can be more than 2.0 units because of the `increaseYieldLimit`

[sparrowDom]

remove here: 4c4a2cb

[DanielVF]

We are the blessed summer children who have never lived hyper-inflation.

But if the underlying currency is inflating faster than this limit allows, then our users will be in deep trouble. I think we just want to head off donations that damage lending platforms, rather than bet our user funds on stable economies for the next fifty years.

So I'd run this limit something more like 3-5%.

[DanielVF]

One really cool thing about this code's approach is that in the good case, with high limits, and non-attack yield amounts, even if the limit is not reset, it continues perfectly tracking OETH's value for quite a while after the end time is over.

[DanielVF]

An attacker can basically get double the yield that this number says, by donating when a period has ended. That's probably okay, but means that with this approach, we should set the yield to half of what we want.

[sparrowDom]

That is a very good point.

[DanielVF]

I am wondering if there should be a way where we can cleanly allow pushing forward the end time with every action, rather than requiring one limit to end before the next begins. This would be much nicer user facing behavior. We do have to do some math to see how much of the partially completed phase to carry over. Or maybe this is unnecessary complication.

[DanielVF]

The current approach around limits is:

• very simple
• correctly handles the normal case use of the protocol
• correctly blocks donation attacks

But it is also feels like it has a lot weirdness when the limits are hit.

• 2x the limit is possible at the end of the period
• someone can get doubled yielded at the end of a period
• ratios can change mid block, separate from OETH ratios changing

[sparrowDom]

"someone can get doubled yielded at the end of a period"

Are you thinking that a person would be holding OETH, and knowing WOETH needs time to catch up, they would wrap their OETH just after a fat rebase?

"ratios can change mid block, separate from OETH ratios changing"

Do you think this can have negative consequences?

[DanielVF]

So this is talking about behavior when the limits will be hit, and the time is past the end:

• User knows/causes a BIG rebase to be about to occur.
• They have/get a large OETH position.
• The call rebase(), collecting the OETH yield
• They then deposit into WEOTH, at a privileged exchange rate.
• The end of the deposit calls increaseYield. Limits are raised again
• User withdraws, collecting OETH at the new higher rate. No one else was able to do this.

[DanielVF]

I'm actually concerned that is a full on attack, not just a yield steal. Minting funds at the wrong rate could be bad. I'm not sure it is, so I'm going to write a test.

[DanielVF]

I think it's just a yield steal, since the someone can't mint at a lower rate than the existing users got in at.

[DanielVF]

"ratios can change mid block, separate from OETH ratios changing"

Do you think this can have negative consequences?

Yes, it allows someone to selectively take actions between these two. Presumably yield stealing.

[DanielVF]

Ouch!

Confirmed with tests that this is a flashloanable enabled yield steal in the current implementation.

🟥 But it's actually much worse. Stuff does get really out of wack when things are at over the rate limit, and interacting users can actually end up with less funds than they started with depending on how they interact. It gets deeply squirrelly.

[DanielVF]

Still need the oethCreditsHighres = _getOETHCredits();

[sparrowDom]

uff thanks nice catch: b68269d

[sparrowDom]

closing in favour of this one: #2453