Fix reentrancy by protecting podBalanceOf() and balanceOf() from acce…

…ss during updateBalances() loop
1inch · Nov 23, 2022 · dc0ea03 · dc0ea03
1 parent 5fc07f7
commit dc0ea03
Show file tree

Hide file tree

Showing 2 changed files with 58 additions and 3 deletions.
diff --git a/contracts/ERC20Pods.sol b/contracts/ERC20Pods.sol
@@ -7,10 +7,12 @@ import "@1inch/solidity-utils/contracts/libraries/AddressSet.sol";
 
 import "./interfaces/IERC20Pods.sol";
 import "./interfaces/IPod.sol";
+import "./libs/ReentrancyGuard.sol";
 
-abstract contract ERC20Pods is ERC20, IERC20Pods {
+abstract contract ERC20Pods is ERC20, IERC20Pods, ReentrancyGuardExt {
     using AddressSet for AddressSet.Data;
     using AddressArray for AddressArray.Data;
+    using ReentrancyGuardLib for ReentrancyGuardLib.Data;
 
     error PodAlreadyAdded();
     error PodNotFound();
@@ -22,10 +24,12 @@ abstract contract ERC20Pods is ERC20, IERC20Pods {
 
     uint256 public immutable podsLimit;
 
+    ReentrancyGuardLib.Data private _guard;
     mapping(address => AddressSet.Data) private _pods;
 
     constructor(uint256 podsLimit_) {
         podsLimit = podsLimit_;
+        _guard.init();
     }
 
     function hasPod(address account, address pod) public view virtual returns(bool) {
@@ -44,7 +48,11 @@ abstract contract ERC20Pods is ERC20, IERC20Pods {
         return _pods[account].items.get();
     }
 
-    function podBalanceOf(address pod, address account) public view returns(uint256) {
+    function balanceOf(address account) public nonReentrantView(_guard) view override(IERC20, ERC20) returns(uint256) {
+        return super.balanceOf(account);
+    }
+
+    function podBalanceOf(address pod, address account) public nonReentrantView(_guard) view returns(uint256) {
         if (hasPod(account, pod)) {
             return balanceOf(account);
         }
@@ -119,7 +127,7 @@ abstract contract ERC20Pods is ERC20, IERC20Pods {
 
     // ERC20 Overrides
 
-    function _afterTokenTransfer(address from, address to, uint256 amount) internal override virtual {
+    function _afterTokenTransfer(address from, address to, uint256 amount) internal nonReentrant(_guard) override virtual {
         super._afterTokenTransfer(from, to, amount);
 
         unchecked {

diff --git a/contracts/libs/ReentrancyGuard.sol b/contracts/libs/ReentrancyGuard.sol
@@ -0,0 +1,47 @@
+// SPDX-License-Identifier: MIT
+
+pragma solidity ^0.8.0;
+
+library ReentrancyGuardLib {
+    error ReentrantCall();
+
+    uint256 private constant _NOT_ENTERED = 1;
+    uint256 private constant _ENTERED = 2;
+
+    struct Data {
+        uint256 _status;
+    }
+
+    function init(Data storage self) internal {
+        self._status = _NOT_ENTERED;
+    }
+
+    function enter(Data storage self) internal {
+        if (self._status == _ENTERED) revert ReentrantCall();
+        self._status = _ENTERED;
+    }
+
+    function exit(Data storage self) internal {
+        self._status = _NOT_ENTERED;
+    }
+
+    function check(Data storage self) internal view returns (bool) {
+        return self._status == _ENTERED;
+    }
+}
+
+contract ReentrancyGuardExt {
+    using ReentrancyGuardLib for ReentrancyGuardLib.Data;
+    error AccessDenied();
+
+    modifier nonReentrant(ReentrancyGuardLib.Data storage self) {
+        self.enter();
+        _;
+        self.exit();
+    }
+
+    modifier nonReentrantView(ReentrancyGuardLib.Data storage self) {
+        if (self.check()) revert ReentrancyGuardLib.ReentrantCall();
+        _;
+    }
+}