Skip to content

xBalbinus/spark-psm

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

25 Commits
.github/workflows
.github/workflows
 
 
lib
lib
 
 
src
src
 
 
test
test
 
 
.gitignore
.gitignore
 
 
.gitmodules
.gitmodules
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
foundry.toml
foundry.toml
 
 
medusa.json
medusa.json
 
 

Repository files navigation

⚡ Spark PSM ⚡

Foundry CI Foundry License: AGPL v3

Overview

This repository contains the implementation of a Peg Stability Module (PSM) contract, which facilitates the swapping, depositing, and withdrawing of three given assets to maintain stability and ensure the peg of involved assets. The PSM supports both yield-bearing and non-yield-bearing assets.

asset0 and asset1 are two ERC20 tokens that are directly correlated and are non-yield-bearing, referred to as "base assets". asset2 is a yield-bearing version of both asset0 and asset1. The PSM contract allows users to swap between these assets, deposit any of the assets to mint shares, and withdraw any of the assets by burning shares.

The conversion between a base asset and asset2 is provided by a rate provider contract. The rate provider returns the conversion rate between asset2 and the base asset in 1e27 precision. The conversion between the base assets is one to one.

The conversion rate between assets and shares is based on the total value of assets held by the PSM. The total value is calculated by converting the assets to their equivalent value in the base asset with 18 decimal precision. The shares represent the ownership of the underlying assets in the PSM. Since three assets are used, each with different precisions and values, they are converted to a common base asset-denominated value for share conversions.

For detailed implementation, refer to the contract code and IPSM interface documentation.

Contracts

  • src/PSM3.sol: The core contract implementing the IPSM3 interface, providing functionality for swapping, depositing, and withdrawing assets.
  • src/interfaces/IPSM3.sol: Defines the essential functions and events that the PSM contract implements.

[CRITICAL]: First Depositor Attack Prevention on Deployment

On the deployment of the PSM, the deployer MUST make an initial deposit to get AT LEAST 1e18 shares in order to protect the first depositor from getting attacked with a share inflation attack or DOS attack. Share inflation attack is outlined further here. Technical details related to this can be found in test/InflationAttack.t.sol.

The DOS attack is performed by:

  1. Attacker sends funds directly to the PSM. totalAssets now returns a non-zero value.
  2. Victim calls deposit. convertToShares returns amount * totalShares / totalValue. In this case, totalValue is non-zero and totalShares is zero, so it performs amount * 0 / totalValue and returns zero.
  3. The victim has transferFrom called moving their funds into the PSM, but they receive zero shares so they cannot recover any of their underlying assets. This renders the PSM unusable for all users since this issue will persist. totalShares can never be increased in this state.

The deployment script [TODO] in this repo contains logic for the deployer to perform this initial deposit, so it is HIGHLY RECOMMENDED to use this deployment script when deploying the PSM. Reasoning for the technical implementation approach taken is outlined in more detail here.

PSM Contract Details

State Variables and Immutables

  • asset0: Non-yield-bearing base asset (e.g., USDC).
  • asset1: Another non-yield-bearing base asset that is directly correlated to asset0 (e.g., DAI).
  • asset2: Yield-bearing version of both asset0 and asset1 (e.g., sDAI).
  • rateProvider: Contract that returns a conversion rate between and asset2 and the base asset (e.g., sDAI to USD) in 1e27 precision.
  • totalShares: Total shares in the PSM. Shares represent the ownership of the underlying assets in the PSM.
  • shares: Mapping of user addresses to their shares.

Functions

Swap Functions

  • swap: Allows swapping of assets based on current conversion rates. Ensures the output amount meets the minimum required before executing the transfer and emitting the swap event. Includes a referral code.

Liquidity Provision Functions

  • deposit: Deposits assets into the PSM, minting new shares. Includes a referral code.
  • withdraw: Withdraws assets from the PSM by burning shares. Ensures the user has sufficient shares for the withdrawal and adjusts the total shares accordingly. Includes a referral code.

Preview Functions

  • previewDeposit: Estimates the number of shares minted for a given deposit amount.
  • previewWithdraw: Estimates the number of shares burned and the amount of assets withdrawn for a specified amount.
  • previewSwap: Estimates the amount of one asset received for a given amount of another asset in a swap.

Conversion Functions

NOTE: These functions do not round in the same way as preview functions, so they are meant to be used for general quoting purposes.

  • convertToAssets: Converts shares to the equivalent amount of a specified asset.
  • convertToAssetValue: Converts shares to their equivalent value in base asset terms with 18 decimal precision (e.g., USD).
  • convertToShares: Converts asset values to shares based on the current exchange rate.

Asset Value Functions

  • totalAssets: Returns the total value of all assets held by the PSM denominated in the base asset with 18 decimal precision. (e.g., USD).

Events

  • Swap: Emitted on asset swaps.
  • Deposit: Emitted on asset deposits.
  • Withdraw: Emitted on asset withdrawals.

Running Tests

To run tests in this repo, run:

forge test

The IP in this repository was assigned to Mars SPC Limited in respect of the MarsOne SP.

About

Repo for the L2 PSM for swapping between stable assets and sDAI.

Resources

Readme

License

AGPL-3.0 license
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages

  • Solidity 100.0%