Assessment reportsPublic findings
Back to Zellic siteBack
Assessment reports>d3-doma>Threat Model>Function: rejectTokenization()
GeneralOverview
Findings
Critical (3)
Medium (1)
Low (6)
Informational (2)
Threat ModelWhat are threat models?DomaForwarder.solDomaRecordProxyFacet.solDomaRecordRegistrarClaimFacet.sol
DomaRecordRegistrarFacet.solFunction: approveTokenization()Function: complianceChangeLockStatus()Function: complianceDetokenize()Function: eoiImport()Function: nameTokenize()Function: registrarDelete()Function: registrarDetokenize()Function: rejectTokenization()Function: renew()Function: update()Function: updateDsKeys()Function: updateNameservers()
ERC7786GatewayReceiver.solERC7786GatewaySource.solMarketplace.solOwnershipToken.solProxyDomaRecord.sol
Audit ResultsAssessment Results

Function: rejectTokenization()

This function is called by registrars to reject a tokenization request.

Inputs

  • sld

    • Control: Fully controlled.

    • Constraints: N/A.

    • Impact: The SLD of the domain that this token is for.

  • tld

    • Control: Fully controlled.

    • Constraints: N/A.

    • Impact: The TLD of the domain that this token is for.

  • correlationId

    • Control: Not controlled.

    • Constraints: This is hardcoded by the ProxyDomaRecord contract.

    • Impact: This is a hash of the current block number, the chain ID, and a nonce on the remote chain.

Branches and code coverage (including function calls)

Intended branches

Negative behavior

Zellic © 2025Back to top ↑