Platform: Code4rena
Start Date: 16/01/2024
Pot Size: $80,000 USDC
Total HM: 37
Participants: 178
Period: 14 days
Judge: Picodes
Total Solo HM: 4
Id: 320
League: ETH
Rank: 64/178
Findings: 2
Award: $133.99
🌟 Selected for report: 0
🚀 Solo Findings: 0
122.2968 USDC - $122.30
https://github.com/code-423n4/2024-01-salty/blob/main/src/ManagedWallet.sol#L77
There is a timelock of 30 days before the proposed mainWallet can confirm the change. Consider the following scenario.
There is no restriction here that the mainWallet cannot be the same as the confirmationWallet. If mainWallet==confirmationWallet It is possible to immediately activate the activeTimelock after deploy. proposeWallets() to changeWallets() process can less than 30 days
https://github.com/code-423n4/2024-01-salty/blob/main/src/ManagedWallet.sol#L77
Invalid Validation
#0 - c4-judge
2024-02-03T09:06:21Z
Picodes marked the issue as duplicate of #637
#1 - c4-judge
2024-02-19T16:26:33Z
Picodes marked the issue as satisfactory
🌟 Selected for report: juancito
Also found by: 0x3b, 0xBinChook, 0xCiphky, 0xHelium, 0xMango, 0xOmer, 0xRobocop, 0xSmartContractSamurai, 0xWaitress, 0xbepresent, 0xpiken, 7ashraf, Arz, Audinarey, Banditx0x, Bauchibred, Draiakoo, IceBear, J4X, Jorgect, Kaysoft, KingNFT, Rhaydden, Rolezn, The-Seraphs, Tigerfrake, Topmark, Tripathi, Udsen, ZanyBonzy, a3yip6, b0g0, chaduke, codeslide, csanuragjain, dharma09, djxploit, eta, ether_sky, grearlake, inzinko, jasonxiale, jesjupyter, josephdara, lanrebayode77, linmiaomiao, lsaudit, niroh, oakcobalt, peanuts, pina, sivanesh_808, slvDev, t0x1c, vnavascues, wangxx2026
11.6897 USDC - $11.69
https://github.com/code-423n4/2024-01-salty/blob/main/src/SigningTools.sol#L7
address constant public EXPECTED_SIGNER = 0x1234519DCA2ef23207E1CA7fd70b96f281893bAa;
Once a user has been granted permission, there is no mechanism for removal in the absence of a blacklist. https://github.com/code-423n4/2024-01-salty/blob/main/src/AccessManager.sol#L65
// Grant access to the sender for the given geoVersion. // Requires the accompanying correct message signature from the offchain verifier. function grantAccess(bytes calldata signature) external { require( _verifyAccess(msg.sender, signature), "Incorrect AccessManager.grantAccess signatory" ); _walletsWithAccess[geoVersion][msg.sender] = true; emit AccessGranted( msg.sender, geoVersion ); }
This issue is covered in the bot race report but lacks a more detailed explanation.
saltBalance is the salt balance of the Airdrop contract. saltAmountForEachUser is calculated as follows:
https://github.com/code-423n4/2024-01-salty/blob/main/src/launch/Airdrop.sol#L64
saltAmountForEachUser = saltBalance / numberAuthorized();
Afterward, approve saltBalance to the staking contract. https://github.com/code-423n4/2024-01-salty/blob/main/src/launch/Airdrop.sol#L67
salt.approve( address(staking), saltBalance );
claimAirdrop() only sends out saltAmountForEachUser.
https://github.com/code-423n4/2024-01-salty/blob/main/src/launch/Airdrop.sol#L81-L82
// Have the Airdrop contract stake a specified amount of SALT and then transfer it to the user staking.stakeSALT( saltAmountForEachUser ); staking.transferStakedSaltFromAirdropToUser( msg.sender, saltAmountForEachUser );
Consider the following scenarios: If saltBalance = 100 saltAmountForEachUser = saltBalance / numberAuthorized() => 100/8 = 12 Approved 4 salt in excess. If saltBalance = 200 saltAmountForEachUser = saltBalance / numberAuthorized() => 200/26 = 182 Approved 18 salt in excess.
setContracts can only be be called once But when dao is the zero address, it can bypass the check. https://github.com/code-423n4/2024-01-salty/blob/main/src/ExchangeConfig.sol#L51
require( address(dao) == address(0), "setContracts can only be called once" );
The owner can set the address of many parameters multiple times. Describe some of the impacts here.
The airdrop address is expected to be set only once. When the airdrop address can be reset. This will affect functions that use the return value of walletHasAccess() to verify legitimacy, including CollateralAndLiquidity.sol borrowUSDS(), Liquidity.sol _depositLiquidityAndIncreaseShare(), and Staking.sol stakeSALT().
The upkeep address is expected to be set only once.
When the upkeep address can be reset.
can use withdrawArbitrageProfits() from DAO.sol to withdraw the WETH arbitrage profits.
It also affects all functions that check permissions using msg.sender == address(exchangeConfig.upkeep).
Votes can still be cast after the completionTimestamp.
https://github.com/code-423n4/2024-01-salty/blob/main/src/launch/BootstrapBallot.sol#L48
// Cast a YES or NO vote to start up the exchange, distribute SALT and establish initial geo restrictions. // Votes cannot be changed once they are cast. // Requires a valid signature to signify that the msg.sender is authorized to vote (being whitelisted and the retweeting exchange launch posting - checked offchain) function vote( bool voteStartExchangeYes, bytes calldata signature ) external nonReentrant { require( ! hasVoted[msg.sender], "User already voted" ); // Verify the signature to confirm the user is authorized to vote bytes32 messageHash = keccak256(abi.encodePacked(block.chainid, msg.sender)); require(SigningTools._verifySignature(messageHash, signature), "Incorrect BootstrapBallot.vote signatory" ); if ( voteStartExchangeYes ) startExchangeYes++; else startExchangeNo++; hasVoted[msg.sender] = true; // As the whitelisted user has retweeted the launch message and voted, they are authorized to the receive the airdrop. airdrop.authorizeWallet(msg.sender); }
finalizeBallot allows anyone to call. And finalizeBallot can be called immediately once completionTimestamp is reached. Users can observe the voting process and immediately front-run favorable outcomes for themselves once the completionTimestamp is reached. Votes cast by users after this point will be ineffective. This could impact credibility.
#0 - c4-judge
2024-02-03T13:21:39Z
Picodes marked the issue as grade-b