Cosmos-sdk: Possible inconsistency in LooseTokens

Created on 29 Jul 2018  路  9Comments  路  Source: cosmos/cosmos-sdk

Summary of Bug

When a validator is slashed and an individual share is is now a floating point number like 1.6 a delegator will get 2 steaks back when he unrevokes because of bankers rounding.

https://github.com/cosmos/cosmos-sdk/blob/c9936b310af96c5eb519cd7142f3ad22adce7a7c/x/stake/keeper/delegation.go#L331

However LooseTokens will only be incremented by the Rat value of 1.6

https://github.com/cosmos/cosmos-sdk/blob/c9936b310af96c5eb519cd7142f3ad22adce7a7c/x/stake/types/validator.go#L398-L404

https://github.com/cosmos/cosmos-sdk/blob/c9936b310af96c5eb519cd7142f3ad22adce7a7c/x/stake/types/pool.go#L73

This will lead to an inconsistency between the real staking tokens in circulation and LooseTokens.

For Admin Use

  • [x] Not duplicate issue
  • [x] Appropriate labels applied
  • [x] Appropriate contributors tagged
  • [x] Contributor assigned/self-assigned
bug staking
Source
picture hendrikhofstadt
👍4

Most helpful comment

rounding down seems fine for now...

picture jaekwon on 9 Oct 2018
👍3

All 9 comments

Wow, great catch! ref #1471

/cc @rigelrozanski , @cwgoes

ValarDragon picture ValarDragon on 30 Jul 2018

Yup, this needs to be fixed - ref https://github.com/cosmos/cosmos-sdk/issues/1807.

cwgoes picture cwgoes on 30 Jul 2018

I guess we just need to double check whether or not this is still a concern with the decimal implementation.

ValarDragon picture ValarDragon on 8 Sep 2018

We should verify this once staking refactor has been completed.

alexanderbez picture alexanderbez on 28 Sep 2018

We should verify this once staking refactor has been completed.

This is still an issue; the staking refactor did not change the delegation/undelegation logic.

cwgoes picture cwgoes on 9 Oct 2018

I think we need to change the approach here altogether, this seems like an attack vector - if it's possible to get "extra" tokens by rounding, there's likely some way to create such delegations en masse and mint currency. Either we need to round down instead, or we need to restrict unbonding to whole-token amounts.

cwgoes picture cwgoes on 9 Oct 2018

rounding down seems fine for now...

jaekwon picture jaekwon on 9 Oct 2018
👍3

rounding down seems fine for now...

OK, let's also update the pool accordingly so supply tracking remains consistent.

cwgoes picture cwgoes on 9 Oct 2018
👍1

I think rounding down is fine because this is going to be such a fractionally small amount of tokens (10^-8 of an atom) should be okay

rigelrozanski picture rigelrozanski on 10 Oct 2018
Was this page helpful?
0 / 5 - 0 ratings

Related issues

fedekunze picture fedekunze  路  3Comments
rigelrozanski picture rigelrozanski  路  3Comments
johnmcdowall picture johnmcdowall  路  3Comments
ValarDragon picture ValarDragon  路  3Comments
faboweb picture faboweb  路  3Comments