Assessment reports>Falcon Finance>Threat Model>withdraw

Function: withdraw(uint256 assets, address receiver, address owner)

This function overrides the withdraw function of ERC-4626 and can be called when the cooldown is off.

Inputs

  • assets

    • Control: Fully controlled by the caller.

    • Constraints: N/A.

    • Impact: Amount of assets to be withdrawn.

  • receiver

    • Control: Fully controlled by the caller.

    • Constraints: N/A.

    • Impact: Address of the receiver who will receive the withdrawn shares.

  • owner

    • Control: Fully controlled by the caller.

    • Constraints: N/A.

    • Impact: Owner's address of the vault shares to be burned for the withdrawal.

Branches and code coverage

Intended branches

  • Check if cooldown is off.

  • Call parent's withdraw function.

Negative behavior

  • If cooldown is not off, the transaction will be reverted.

Zellic © 2025Back to top ↑