Sparkn

CodeFox Inc.

DeFiFoundryProxy

15,000 USDC

Submission Details

Severity: low

Use of abi.encodePacked with dynamic types inside keccak256

abi.encodePacked should not be used with dynamic types when passing the result to a hash function such as keccak256.

function getProxyAddress(bytes32 salt, address implementation) public view returns (address proxy) {

bytes memory code = abi.encodePacked(type(Proxy).creationCode, uint256(uint160(implementation)));

bytes32 hash = keccak256(abi.encodePacked(bytes1(0xff), address(this), salt, keccak256(code)));

proxy = address(uint160(uint256(hash)));

}

To prevent any hash collisions.source

Manual Review

Use abi.encode instead, which will pad items to 32 bytes

Total prize

15,000 USDC

nSLOC

194

77 USDC / LOC

High Medium

14,000 USDC

Low

1,000 USDC

The contest is live. Earn rewards by submitting a finding.

Submissions are being carefully reviewed by our judges.

This is your time to appeal against judgements on your submissions.

Appeals are being carefully reviewed by our judges.

The contest is complete and the rewards are being distributed.

Support

Can't find an answer? Chat with us on Discord, Twitter or Linkedin.