QA Report #804
Labels
bug
Something isn't working
old-submission-method
QA (Quality Assurance)
Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax
CodeArena QA Report
Vulnerability detail - Duplicate Code
Impact
The validateOrder() function in GolomTrader.sol checks twice that the recovered signature signer is o.signer.
Details/Proof-Of-Concept
The following code is encountered from L177 of GolomTrader.sol:
The require() statement ensures that the following condition is never met. If signaturesigner and o.signer don't match the transaction will revert with an 'invalid signature' error instead of returning a status code of 0.
Suggested Mitigation Steps
Remove the if statement from L178-L180.
Tools Used
Saw it reading in VSCode
The text was updated successfully, but these errors were encountered: