Beanstalk: The Finale

Beanstalk

DeFiHardhatFoundry

250,000 USDC

View results

Previous Next

Submission Details

Severity: medium

Valid

Incorrect calculation of _domainSeparatorV4 in LibTractor.sol which causes DoS of TractorFacet.sol functionality.

0xsandy

Summary

The _domainSeparatorV4 calculation is incorrect in LibTractor.sol which causes DoS of TractorFacet.sol functionality.

Vulnerability Details

_domainSeparatorV4() is implemented as:

function _domainSeparatorV4() internal view returns (bytes32) {

return keccak256(

abi.encode(BLUEPRINT_TYPE_HASH, TRACTOR_HASHED_NAME, TRACTOR_HASHED_VERSION, C.getChainId(), address(this))

);

}

Here, BLUEPRINT_TYPE_HASH is defined as:

bytes32 public constant BLUEPRINT_TYPE_HASH = keccak256(

"Blueprint(address publisher,bytes data,bytes operatorData,uint256 maxNonce,uint256 startTime,uint256 endTime)"

);

But, BLUEPRINT_TYPE_HASH should be used for calculating Blueprint hash not domain separator for EIP712 signatures. Thus, _hashTypedDataV4() will return incorrect EIP712 compliant hash.

function _hashTypedDataV4(bytes32 structHash) internal view returns (bytes32) {

return keccak256(abi.encodePacked("\x19\x01", _domainSeparatorV4(), structHash));

}

Impact

DoS of TractorFacet contract functionality as verifyRequisition modifier calls _getBlueprintHash() function of LibTractor.sol to get the blueprint which will be calculated incorrectly because of incorrect domain seperator calculation.

modifier verifyRequisition(LibTractor.Requisition calldata requisition) {

bytes32 blueprintHash = LibTractor._getBlueprintHash(requisition.blueprint);

require(blueprintHash == requisition.blueprintHash, "TractorFacet: invalid hash");

address signer =

ECDSA.recover(MessageHashUtils.toEthSignedMessageHash(requisition.blueprintHash), requisition.signature);

require(signer == requisition.blueprint.publisher, "TractorFacet: signer mismatch");

}

The hashes won't match and the modifier will revert. This will cause in reverting of other subsequent functions using the verifyRequisition modifier like tractor(), cancelBlueprint().

Tools Used

Manual Analysis

Relevant Links

Recommendations

Modify the _domainSeparatorV4() function to use the EIP712_TYPE_HASH:

function _domainSeparatorV4() internal view returns (bytes32) {

return keccak256(

abi.encode(EIP712_TYPE_HASH, TRACTOR_HASHED_NAME, TRACTOR_HASHED_VERSION, C.getChainId(), address(this))

);

}

Updates

Lead Judging Commences

inallhonesty Lead Judge 12 months ago

Submission Judgement Published

Validated

Assigned finding tags:

Tractor not compliant to EIP712 requirement because it's using the type hash of the blueprint, not the EIP712Domain

Prize pool breakdown

Total prize

250,000 USDC

nSLOC

12,285

20 USDC / LOC

High Medium

220,000 USDC

Low

10,000 USDC

Judges

20,000 USDC

Live

The contest is live. Earn rewards by submitting a finding.

Judging

Submissions are being carefully reviewed by our judges.

View all submissions

Appeals

This is your time to appeal against judgements on your submissions.

Appeals Review

Appeals are being carefully reviewed by our judges.

Rewards Distribution

The contest is complete and the rewards are being distributed.

View results

Support

FAQs

Can't find an answer? Chat with us on Discord, Twitter or Linkedin.