Replay Attack on Deposit Requests
Summary
The depositTokens function constructs a request hash and sends it to Starknet, but it does not track or store these hashes. This oversight makes the contract vulnerable to replay attacks.
Vulnerability Details
The depositTokens function generates a request hash based on the provided inputs but does not save this hash in storage. Without tracking these hashes, a malicious actor can replay the same request, leading to potential duplicate deposits.
Impact
Replay attacks could result in multiple unintended token deposits or withdrawals, affecting the accuracy and reliability of token transfers between L1 and L2.
Tools Used
Manual Code Review
Recommendations
Implement a mechanism to store processed request hashes. For instance, you can use a mapping to keep track of used request hashes:
Update the depositTokens function to use these methods to prevent replay attacks:
Lead Judging Commences
invalid-replay-attack-hash-not-stored-nonce-not-used
There is no impact here: Transaction cannot be replayed because the blockchain use the nonce in the signature. Hash is computed on-chain. Using or trying to have the same hash mean you need to buy the token, and they will be sent to their origin owner. Why an attacker would buy tokens to give them back ? No real impact.
Appeal created
invalid-replay-attack-hash-not-stored-nonce-not-used
There is no impact here: Transaction cannot be replayed because the blockchain use the nonce in the signature. Hash is computed on-chain. Using or trying to have the same hash mean you need to buy the token, and they will be sent to their origin owner. Why an attacker would buy tokens to give them back ? No real impact.
Prize pool breakdown
Live
The contest is live. Earn rewards by submitting a finding.
Appeals
This is your time to appeal against judgements on your submissions.
Appeals Review
Appeals are being carefully reviewed by our judges.