Invariant breakage in FjordStaking::addAuthorizedSablierSender allows to set zero address as authorizedSablierSenders while FjordStaking::constructor doesnt allow it
Summary
FjordStaking::addAuthorizedSablierSender allows to break an invariant/restriction imposed in FjordStaking's contructor making possible to set address(0) as an AuthorizedSablierSender.
Vulnerability Details
FjordStaking constructor doesnt allow setting address(0) as an AuthorizedSablierSender
However, FjordStaking::addAuthorizedSablierSender allows to bypass this restriction:
The following proof of concept shows the previous described bug, using addAuthorizedSablierSender to set address zero as an AuthorizedSablierSender
Create this test file as FjordStakingInvariant.t.sol in test directory
Execute test file with
Observe address zero is now a AuthorizedSablierSender
Impact
Invariant breaking about authorized sablier senders
Restriction Bypassing
Tools Used
Manual Review
Recommendations
Modify addAuthorizedSablierSender to not be able to break invariant about addAuthorizedSablierSender:
Prize pool breakdown
Live
The contest is live. Earn rewards by submitting a finding.
Appeals
This is your time to appeal against judgements on your submissions.
Appeals Review
Appeals are being carefully reviewed by our judges.