Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

CS-BOLD-020 Informational 7.18: rETH Address Might Change #494

Open
bingen opened this issue Oct 9, 2024 · 1 comment
Open

CS-BOLD-020 Informational 7.18: rETH Address Might Change #494

bingen opened this issue Oct 9, 2024 · 1 comment
Labels
ChainSecurity wontfix This will not be worked on

Comments

@bingen
Copy link
Collaborator

bingen commented Oct 9, 2024

The rocket pool protocol stores addresses in a storage contract. The protocol's codebase indicates that addresses should not be used directly but be retrieved on-chain. However, the collateral token address is set once in the AddressesRegistry and cannot be updated.

In practice, it seems unlikely that the rETH token's address will change due to other integrations.
Additionally, it is unspecified how integrators should properly handle such a migration.
@bingen
Copy link
Collaborator Author

bingen commented Oct 22, 2024
edited
Loading

This is the response from RocketPool team:

When would rETH contract addresses change?
While technically possible, the address RocketStorage maintains shouldn’t change ever.

What would actually happen in case on an address change?
Without wide-ranging changes to the overall protocol (deposit pool contract, minipool contracts where upgrades are opt-in on a per operator basis), rocket pool would break pretty badly. The deposit pool would keep minting the existing ERC20 and ignore the new address. Existing minipools that generate staking rewards would continue to send these rewards to the old token. New minipools would send to the new token (that nobody is able to mint).

Would balances automatically migrate to the new token, or would holders need to excute a migration function?
Without further upgrades, nothing like that would happen.

Are there any upgrade implementations of the token we should know of?
No

Why have a technical reason to change the address then?
The oDAO controls protocol upgrades. They would have to vote for an upgrade that changes the rETH address. I can’t think of a scenario where doing so makes sense for the protocol, because I would assume it would really break things.
Overall, I’d say that rETH comes with the assumption that the rocket pool oDAO isn’t compromised, independent of the risk of rETH address changing. rETH redemptions rely on correct price updates from the oDAO. A malicious upgrade to minipools could still redirect funds belonging to rETH elsewhere. If you are assuming that oDAO is operating correctly, I think you can also assume that rETH address isn’t changed.

In addition to this, the protocol is designed with the assumption that the rETH address does not change. For example:

@bingen bingen added the wontfix This will not be worked on label Oct 22, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
ChainSecurity wontfix This will not be worked on
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@bingen