Wrong assumption about `safeApprove()` causing DoS

Summary

No response

Root Cause

safeApprove() does not handle tokens such as USDT that require a non-zero to zero approval, it only handles token traits such as not returning a boolean. As seen, this is expected by the protocol, thus this should be considered valid:

///@notice oz safeIncreaseAllowance controls for tokens that require allowance to be reset to 0 before increasing again

Internal pre-conditions

No response

External pre-conditions

No response

Attack Path

A target swapper is approved for USDT but the full allowance is not used up
For a second swap, we would revert here:

tokenIn.safeApprove(target, amountIn);

This results in DoS

Impact

DoS

PoC

No response

Mitigation

Use forceApprove() instead

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

024.md

024.md

Wrong assumption about `safeApprove()` causing DoS

Summary

Root Cause

Internal pre-conditions

External pre-conditions

Attack Path

Impact

PoC

Mitigation

Files

024.md

Latest commit

History

024.md

File metadata and controls

Wrong assumption about safeApprove() causing DoS

Summary

Root Cause

Internal pre-conditions

External pre-conditions

Attack Path

Impact

PoC

Mitigation

Wrong assumption about `safeApprove()` causing DoS