Assessment reportsPublic findings
Back to Zellic site
Assessment reports>Awaken Swap>High findings>Anyone can create tokens before initialization
GeneralOverview
Findings
High (3)The supply limit limits issue, not supplyAnyone can create tokens before initializationThe `AssertContractInitialized` function should check `Initialized`
Medium (2)
Low (1)
Informational (2)
DiscussionVirtual addresses are not actually usedNo tests for ACS2 read/write path correctnessAdditional token-sanity checks
Threat ModelModule: AwakenSwapContract.csModule: AwakenSwapContract_Admin.csModule: AwakenSwapContract_Helper.csModule: AwakenSwapContract_LP.csModule: AwakenSwapContract_Swap.csModule: AwakenSwapContract_Views.csModule: TokenContract.csModule: TokenContract_ACS2.csModule: TokenContract_Actions.cs
Audit ResultsSummary
Category: Coding Mistakes

Anyone can create tokens before initialization

High Severity
High Impact
Medium Likelihood

Description

Normally, only a trusted minter whose address is in the MinterMap is allowed to call Create to create new tokens. However, in the function implementation, this is only checked if the owner is set:

public override Empty Create(CreateInput input)
{
    if (State.Owner.Value != null)
    {
        AssertSenderIsMinter();
    }

    // [...]
}

This means that if the contract is deployed but not initialized, this check is skipped, and anyone can create tokens with any name.

Impact

Quick users can create tokens with symbols that the swap contract would create as LP tokens by sniping them during the deployment process. If they succeed, they will control the token instead of the swap contract.

Recommendations

Remove the conditional and always check AssertSenderIsMinter. This check will always return false if the contract is uninitialized, since the MinterMap is empty before initialization.

Remediation

This issue has been acknowledged by Awaken Finance, and a fix was implemented in commit 1eeef4bf.

Zellic © 2024Back to top ↑