Skip to content
This repository has been archived by the owner on May 26, 2023. It is now read-only.

Latest commit

 

History

History
34 lines (23 loc) · 1.49 KB

071.md

File metadata and controls

34 lines (23 loc) · 1.49 KB
Raw

csanuragjain

medium

No deadline for retryMessage

Summary

It seems there is no expiry or cancelling facility for retryMessage. This could become a problem where an old failed transaction could be run at any point of time in future without any deadline

Vulnerability Detail

  1. Assume transaction X fails which adds this transaction to failedMessages via _storeFailedMessage function
function _storeFailedMessage(uint16 _srcChainId, bytes memory _srcAddress, uint64 _nonce, bytes memory _payload, bytes memory _reason) internal virtual {
        failedMessages[_srcChainId][_srcAddress][_nonce] = keccak256(_payload);
        emit MessageFailed(_srcChainId, _srcAddress, _nonce, _payload, _reason);
    }

  1. User tries retryMessage but transaction fails due to certain condition.

  2. User understands that current condition does not allow the transaction to complete as of now. But now User has no way to cancel this retryMessage. This means anyone can execute this transaction in future even if it is not required

Impact

This could become a problem where an old failed transaction could be run at any point of time in future by anyone without any deadline, even when it was no longer required

Code Snippet

https://github.com/sherlock-audit/2023-01-uxd/blob/main/contracts/external/layer-zero/lzApp/NonblockingLzApp.sol#L46

Tool used

Manual Review

Recommendation

Allow only X amount of duration post fail calls and if call is not processed during that time then it expires