Flawed Auction Extension Logic Can Lead to Unintended Durations
Root + Impact
Description
-
The anti-sniping logic in the
placeBidfunction is implemented incorrectly. When a last-minute bid extends the auction, the code adds the extension duration to theprevious
auctionEndtime (listing.auctionEnd + S_AUCTION_EXTENSION_DURATION). The correct implementation is to set the new end time relative to the current block's timestamp (block.timestamp + S_AUCTION_EXTENSION_DURATION). This flaw causes the remaining time to be added to the extension, making auctions last significantly longer than the intended 15 minutes.
Risk
Likelihood:
-
This occurs every time a bid is placed when the time left in the auction is less than
S_AUCTION_EXTENSION_DURATION. -
A user places a bid moments before the auction is scheduled to end.
Impact:
-
The auction's core timing mechanism is broken and unpredictable, violating the principle of least surprise for all participants.
-
This can disrupt fair price discovery by giving bidders an unfairly long and inconsistent time window to react.
Proof of Concept
Recommended Mitigation
Lead Judging Commences
BidBeast Marketplace: Auction Duration Miscalculation
BidBeast marketplace contains a flaw in its auction timing mechanism. This causes the contract to miscalculate the actual end time of an auction, resulting in auctions that either conclude prematurely or run longer than specified.
Rewards breakdown
Live
The contest is live. Earn rewards by submitting a finding.
Appeals
This is your time to appeal against judgements on your submissions.
Appeals Review
Appeals are being carefully reviewed by our judges.