This repository has been archived by the owner on Jun 29, 2023. It is now read-only.
Withdraw signature has no nonce #665
Comments
jacque006
added
bug
|
This is similar to the replay attack illustrated in this Solidity example: https://docs.soliditylang.org/en/v0.6.12/solidity-by-example.html?highlight=nonce#what-to-sign @marik-d when referring to nonce, I assume you are referring to a data structure that would track nonce's specific to the |
|
Yes, it doesn't have to be the nonce of the L1 ETH account, just some single-use value. Can be something specific to this withdraw operation. |
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
To claim the withdrawn funds to an ethereum address users submit a signature signed with their BLS wallet. Right now that signature only includes the address that the funds are being withdrawn to, and no nonce.
This allows an attacker to re-use the same signature for the next withdrawal from the same account.
https://github.dev/thehubbleproject/hubble-contracts/blob/7058cba1a4e5a6251571f74a6a7f16de5b77e2a7/contracts/WithdrawManager.sol#L98-L98
The text was updated successfully, but these errors were encountered: