Proposed: November 23, 2022
Status: Passed
Beanstalk Immunefi Committee
Per the process outlined in BIR Execution, once a BIR passes, the Beanstalk Community Multisig (BCM) executes it by:
- Minting Beans to the whitehat's address in order to cover the bug bounty; and
- Minting Beans to Immunefi's address in order to cover the 10% fee.
According to Section 3.3 of the Root whitepaper, the amount of Roots to be Redeemed from a set of Deposits is derived from the maximum percentage change in the BDV, Stalk and Seeds of Root as a result of the Redemption.
However, in the Root code, the Roots to Redeem used the mininum instead of the maximum which allowed the user to receive more Bean Deposits than they were supposed to when Redeeming.
Update the _transferDeposits() function to subtract the minimum amount remaining from the supply in accordance with Section 3.3 of the Root whitepaper. Because subtraction occurs in the _transferDeposits() function, subtracting the maximum amount remaining from the supply resulted in the minimum of the change in BDV, Stalk and Seeds per Root required to Redeem being used instead of the maximum.
This was fixed in ERIP-0.
Although the Root token was not previously defined as in-scope, the BIC has decided due to the combination of the following reasons to offer a bounty for discovery of the bug and formally include the Root token contract in the Immunefi bug bounty program moving forward:
- The BIC had already determined to include the contract in the bug bounty program, but had not formalized it;
- The contract was audited by Halborn; and
- The contract has already started to attract a significant amount of Beans/BDV.
As a result of this vulnerability, Root holders were able to Redeem for Bean Deposits with fewer Roots than they otherwise would. However, the scale at which this vulnerability could manifest itself was marginal. About ~8,500 Roots had been Redeemed across 12 transactions and an additional ~226 Beans were received from those Redemptions than expected.
Given that:
- It would require time and significant capital to steal any meaningful portion of the underlying BDV of Root;
- The current underlying BDV of Root is about 165k;
- Extrapolating the loss of Beans in past Redemptions due to this vulnerability to the current underlying BDV results in
(165,000 * 226) / 8500 = ~4387Beans; and - The minimum reward for High Impact (Theft of unclaimed yield) is 10,000 Beans:
The BIC determined that this bug report be rewarded 10,000 Beans.
- Potential practicable economic damage: ~$4,387
- Impact: High (Theft of unclaimed yield)
- Entitled to reward: Yes
The init function on the following InitMint contract is called:
We propose 10,000 Beans are minted to the following address in order to pay the bounty to the whitehat:
We propose 1,000 Beans are minted to the following address in order to pay the 10% fee to Immunefi: