Logical Denial of Service for Self-Recipients
Root + Impact
Description
Normally, a user performing an action on-chain expects to be able to receive the resulting proceeds in their own wallet.
The contract explicitly reverts if the recipient address is equal to the msg.sender. This creates an unnecessary hurdle for users and provides no additional security, as a user can simply generate a proof for a secondary burner wallet.
Risk
Likelihood: High
Standard user behavior is to use one wallet; this check will trigger for almost all initial attempts by users.
Impact: Low
The contract prevents the
msg.senderfrom being therecipientof the reward. This forces users to manage multiple addresses and complicates the ZK-proof generation process, as the recipient address is typically a public input bound to the proof.
Proof of Concept
Recommended Mitigation
Allow the msg.sender to be the recipient of the funds.
Lead Judging Commences
incorrect self-transfer rejection
The issue is that `claim()` rejects any case where `recipient == msg.sender`, even though the proof system already binds the claim to the recipient address and the contract ultimately transfers the reward to that same recipient, so prohibiting self-receipt does not protect any obvious security property of the payout flow. It is a low-severity logic or UX restriction, which unnecessarily forces honest claimants to control and provide a second wallet address in order to receive funds.
Rewards breakdown
Live
The contest is live. Earn rewards by submitting a finding.
Appeals
This is your time to appeal against judgements on your submissions.
Appeals Review
Appeals are being carefully reviewed by our judges.