FLO-19 Update Price Deviation to Use DEX Price as Base#206
FLO-19 Update Price Deviation to Use DEX Price as Base#206
Conversation
jordanschalm
left a comment
jordanschalm
left a comment
There was a problem hiding this comment.
The Quantstamp audit mentions this as well (FLO-19), but suggests the opposite resolution (use the oracle price as the denominator in all cases).
My 2c is that there is no unambiguously "right" answer to this problem. I still have a slight preference for the way it is now, because it is the most conservative way to compute the deviation (you will reject more pairs of oraclePrice, dexPrice values), but don't have a super strong opinion.
holyfuchs
changed the title
holyfuchs
force-pushed
the
holyfuchs/FLO-19-dexOraclePriceDeviationInRange
branch
from
52e73ee to
c1b5edb
Compare
|
Should we even care if the DEX gives a better price than the oracle? Thinking about it again, the oracle is an aggregate that already includes DEX data and also checks deviation between the 2 prices. It makes more sense to use it as the "ground truth" and only allow a specific deviation from that value. If the Oracle is |
holyfuchs
force-pushed
the
holyfuchs/FLO-19-dexOraclePriceDeviationInRange
branch
from
c1b5edb to
a6a798a
Compare
holyfuchs
force-pushed
the
holyfuchs/FLO-19-dexOraclePriceDeviationInRange
branch
from
a6a798a to
044198d
Compare
| /// Checks that the DEX price does not deviate from the oracle price by more than the given threshold. | ||
| /// The deviation is computed as the absolute difference divided by the smaller price, expressed in basis points. | ||
| /// Checks if the DEX price deviates from the oracle price by more than the allowed threshold (in basis points). | ||
| /// The deviation is measured relative to the oracle price, which is treated as the reference price. |
There was a problem hiding this comment.
I like the new implementation, because it's simple, easier to remember (does what the function name says) and reason about since it removes an if-check.
If we need the behavior of existing implementation, which has a slight bias, then I would change the function to take two DeviationBps, (instead of one) one for the case when dexPrice < oraclePrice, the other for the opposite case. But I'm not sure if that complexity is always better. I'm still prefer simplicity.
3 participants
Closes: #228
What Changed
Updated the deviation denominator from
min(dexPrice, oraclePrice)to a fixed dexPrice.Why
Since we are swapping at the DEX price, it represents our actual execution value. We use it as the "ground truth" so that the deviation check is always relative to the price we are actually paying or receiving.
The Math
By using the execution price as the base, the 1000 bps (10%) threshold creates a consistent safety buffer:
Example (1000 bps / 10% Threshold):
|100 - 90| / 100 = 0.10(1000 bps) -> Pass|100 - 110| / 100 = 0.10(1000 bps) -> Pass