Submission Details
Severity:
Incorrect tractor signature schema, should use EIP712_TYPE_HASH when composing the signature
Line of code
Summary
tractor signature is not eip 712 compliant
Vulnerability Details
bytes32 private constant EIP712_TYPE_HASH =
keccak256(
"EIP712Domain(string name,string version,uint256 chainId,address verifyingContract)"
);
This EIP712_TYPE_HASH is not in the signature schema, then the signature is not EIP 712 complicant,
https://github.com/ethereum/EIPs/blob/master/EIPS/eip-712.md
if we take a look at this line of code
function _domainSeparatorV4() internal view returns (bytes32) {
return
keccak256(
abi.encode(
BLUEPRINT_TYPE_HASH,
TRACTOR_HASHED_NAME,
TRACTOR_HASHED_VERSION,
C.getChainId(),
address(this)
)
);
}
the BLUEPRINT_TYPE_HASH is used instead of the EIP712_TYPE_HASH
Impact
the signature will not comply with the EIP 712 and the generation is generated incorrectly.
Tools Used
Manual review
Recommendations
EIP712_TYPE_HASH must be in the signature schema to ensure the protocol is eip compliant
here is a reference implementation from openzeppelin
the type hash is
bytes32 private constant TYPE_HASH =
keccak256("EIP712Domain(string name,string version,uint256 chainId,address verifyingContract)");
Updates
Lead Judging Commences
inallhonesty about 1 year ago
Submission Judgement Published Assigned finding tags:
Tractor not compliant to EIP712 requirement because it's using the type hash of the blueprint, not the EIP712Domain
Prize pool breakdown
Total prize
250,000 USDC
nSLOC
12,28520 USDC / LOC
220,000 USDC
10,000 USDC
20,000 USDC
Live
The contest is live. Earn rewards by submitting a finding.
Appeals
This is your time to appeal against judgements on your submissions.
Appeals Review
Appeals are being carefully reviewed by our judges.