mirror of https://github.com/crytic/slither
You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
174 lines
4.9 KiB
174 lines
4.9 KiB
[
|
|
{
|
|
"check": "tx-origin",
|
|
"impact": "Medium",
|
|
"confidence": "Medium",
|
|
"description": "TxOrigin.bug0 uses tx.origin for authorization:\n\t- require(bool)(tx.origin == owner) (tests/tx_origin-0.5.1.sol#10)\n",
|
|
"elements": [
|
|
{
|
|
"type": "function",
|
|
"name": "bug0",
|
|
"source_mapping": {
|
|
"start": 127,
|
|
"length": 66,
|
|
"filename_used": "/home/travis/build/crytic/slither/tests/tx_origin-0.5.1.sol",
|
|
"filename_relative": "tests/tx_origin-0.5.1.sol",
|
|
"filename_absolute": "/home/travis/build/crytic/slither/tests/tx_origin-0.5.1.sol",
|
|
"filename_short": "tests/tx_origin-0.5.1.sol",
|
|
"lines": [
|
|
9,
|
|
10,
|
|
11
|
|
],
|
|
"starting_column": 5,
|
|
"ending_column": 6
|
|
},
|
|
"contract": {
|
|
"type": "contract",
|
|
"name": "TxOrigin",
|
|
"source_mapping": {
|
|
"start": 25,
|
|
"length": 442,
|
|
"filename_used": "/home/travis/build/crytic/slither/tests/tx_origin-0.5.1.sol",
|
|
"filename_relative": "tests/tx_origin-0.5.1.sol",
|
|
"filename_absolute": "/home/travis/build/crytic/slither/tests/tx_origin-0.5.1.sol",
|
|
"filename_short": "tests/tx_origin-0.5.1.sol",
|
|
"lines": [
|
|
3,
|
|
4,
|
|
5,
|
|
6,
|
|
7,
|
|
8,
|
|
9,
|
|
10,
|
|
11,
|
|
12,
|
|
13,
|
|
14,
|
|
15,
|
|
16,
|
|
17,
|
|
18,
|
|
19,
|
|
20,
|
|
21,
|
|
22,
|
|
23,
|
|
24,
|
|
25,
|
|
26
|
|
],
|
|
"starting_column": 1,
|
|
"ending_column": 2
|
|
}
|
|
}
|
|
},
|
|
{
|
|
"type": "expression",
|
|
"expression": "require(bool)(tx.origin == owner)",
|
|
"source_mapping": {
|
|
"start": 159,
|
|
"length": 27,
|
|
"filename_used": "/home/travis/build/crytic/slither/tests/tx_origin-0.5.1.sol",
|
|
"filename_relative": "tests/tx_origin-0.5.1.sol",
|
|
"filename_absolute": "/home/travis/build/crytic/slither/tests/tx_origin-0.5.1.sol",
|
|
"filename_short": "tests/tx_origin-0.5.1.sol",
|
|
"lines": [
|
|
10
|
|
],
|
|
"starting_column": 9,
|
|
"ending_column": 36
|
|
}
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"check": "tx-origin",
|
|
"impact": "Medium",
|
|
"confidence": "Medium",
|
|
"description": "TxOrigin.bug2 uses tx.origin for authorization:\n\t- tx.origin != owner (tests/tx_origin-0.5.1.sol#14-16)\n",
|
|
"elements": [
|
|
{
|
|
"type": "function",
|
|
"name": "bug2",
|
|
"source_mapping": {
|
|
"start": 199,
|
|
"length": 95,
|
|
"filename_used": "/home/travis/build/crytic/slither/tests/tx_origin-0.5.1.sol",
|
|
"filename_relative": "tests/tx_origin-0.5.1.sol",
|
|
"filename_absolute": "/home/travis/build/crytic/slither/tests/tx_origin-0.5.1.sol",
|
|
"filename_short": "tests/tx_origin-0.5.1.sol",
|
|
"lines": [
|
|
13,
|
|
14,
|
|
15,
|
|
16,
|
|
17
|
|
],
|
|
"starting_column": 5,
|
|
"ending_column": 6
|
|
},
|
|
"contract": {
|
|
"type": "contract",
|
|
"name": "TxOrigin",
|
|
"source_mapping": {
|
|
"start": 25,
|
|
"length": 442,
|
|
"filename_used": "/home/travis/build/crytic/slither/tests/tx_origin-0.5.1.sol",
|
|
"filename_relative": "tests/tx_origin-0.5.1.sol",
|
|
"filename_absolute": "/home/travis/build/crytic/slither/tests/tx_origin-0.5.1.sol",
|
|
"filename_short": "tests/tx_origin-0.5.1.sol",
|
|
"lines": [
|
|
3,
|
|
4,
|
|
5,
|
|
6,
|
|
7,
|
|
8,
|
|
9,
|
|
10,
|
|
11,
|
|
12,
|
|
13,
|
|
14,
|
|
15,
|
|
16,
|
|
17,
|
|
18,
|
|
19,
|
|
20,
|
|
21,
|
|
22,
|
|
23,
|
|
24,
|
|
25,
|
|
26
|
|
],
|
|
"starting_column": 1,
|
|
"ending_column": 2
|
|
}
|
|
}
|
|
},
|
|
{
|
|
"type": "expression",
|
|
"expression": "tx.origin != owner",
|
|
"source_mapping": {
|
|
"start": 231,
|
|
"length": 57,
|
|
"filename_used": "/home/travis/build/crytic/slither/tests/tx_origin-0.5.1.sol",
|
|
"filename_relative": "tests/tx_origin-0.5.1.sol",
|
|
"filename_absolute": "/home/travis/build/crytic/slither/tests/tx_origin-0.5.1.sol",
|
|
"filename_short": "tests/tx_origin-0.5.1.sol",
|
|
"lines": [
|
|
14,
|
|
15,
|
|
16
|
|
],
|
|
"starting_column": 9,
|
|
"ending_column": 10
|
|
}
|
|
}
|
|
]
|
|
}
|
|
] |