Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Duplicate method staker_info #11

Closed
k06a opened this issue Oct 11, 2018 · 5 comments
Closed

Duplicate method staker_info #11

k06a opened this issue Oct 11, 2018 · 5 comments
Labels
confirmed

Comments

@k06a
Copy link

k06a commented Oct 11, 2018
edited
Loading

This method:

Cold-staking/ColdStaking.sol

Line 226 in 863846e

function staker_info(address _addr) public constant returns (uint _amount, uint _time)

Is already exist because of this line:

Cold-staking/ColdStaking.sol

Line 76 in 863846e

mapping(address => Staker) public staker;

Public property auto-generates getter:

function staker(address staker) public constant returns(uint _amount, uint _time);

Auditing smart contracts in live stream: https://www.youtube.com/watch?v=efZY3_COaiE

Your CryptoManiacs :)
@Dexaran
Copy link
Member

Dexaran commented Oct 12, 2018

Confirmed.

I can classify this as a minor observation, non-security issue (10,000 CLO) because this does not pose a threat of losing funds for users.

Please, provide your ETH/CLO address.

However, it was stated that you should keep your reports private until the end of security audit EthereumCommonwealth/Roadmap#52

bugbounty

The reward will be evaluated after the end of the security audit.

@k06a
Copy link
Author

k06a commented Oct 12, 2018
edited
Loading

@Dexaran sorry about that (my public reports), but I mistakely decided such non-critical issues should be public to avoid duplicates.

This contributions were the part of our public live stream smart contract audits, which help people to understand smart contracts logic better. So any reward is welcome, thank you :)

Wallet: 0x083fc10cE7e97CaFBaE0fE332a9c4384c5f54E45

@Dexaran
Copy link
Member

Dexaran commented Oct 12, 2018

@k06a

sorry about that (my public reports), but I mistakely decided such non-critical issues should be public to avoid duplicates.

The issue with public reports is that we are running an official audit of this contract at the same time by our auditing team. We keep all audit reports and we may assign penalties if an auditor failed to report some issues. Now they can just copy&paste everything from here. However, it is not a great problem. Even more, there were no major issues yet.

This contributions were the part of our public live stream smart contract audits, which help people to understand smart contracts logic better.

Yeah, I've seen the link.
At the end of bugbounty I will write a summary and it is likely that it will be published at Callisto blog. I can provide some links to your channel or any other resources if you would like it.

yuriy77k added a commit to yuriy77k/Cold-staking that referenced this issue Oct 12, 2018
@yuriy77k
minor fixing
244ed1d 
Removed:
- [Duplicate method staker_info](EthereumCommonwealth#11);
- [Duplicate condition](EthereumCommonwealth#8).

Updated function [stake_reward](EthereumCommonwealth#10).
@yuriy77k yuriy77k mentioned this issue Oct 12, 2018
Merged
@Dexaran
Copy link
Member

Dexaran commented Oct 28, 2018

Paid https://explorer2.callisto.network/tx/0xd94e40e07600c87fe70eae8f009a490660e4d9ebb81ae90aa55fa3194e49118d

@k06a
Copy link
Author

k06a commented Oct 28, 2018

@Dexaran thanks!

@k06a k06a closed this as completed Oct 28, 2018
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
confirmed
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@k06a @Dexaran