Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix: check preconditions before running exploit code for the solidity bounty #126

Merged
merged 2 commits into from
Aug 6, 2024
Merged

fix: check preconditions before running exploit code for the solidity bounty #126

merged 2 commits into from
Aug 6, 2024

Conversation

claudioantonio
Copy link
Contributor

@claudioantonio claudioantonio commented Aug 2, 2024
edited
Loading

From the github repo @edubart discovered some known issues that could break the bounty. The following preconditions were added to the assertion script:

  • Require the 0.8.26 solidity version
  • Reject exploit code containing the experimental directive
  • Reject exploit code if it contain non-ascii character

The result of the new assertion script when we submit the code that allowed Eduardo to break the bounty is presented below.

The goal is to deploy it asap while so people can continue playing with it on testnet and meanwhile redo the analysis of the solidity compiler github repo to check if there are other known issues to be added as preconditions.

image

@vercel Vercel
Copy link

vercel bot commented Aug 2, 2024
edited
Loading

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name Status Preview Comments Updated (UTC)
bug-buster ✅ Ready (Inspect) Visit Preview 💬 Add feedback Aug 6, 2024 0:42am

@claudioantonio claudioantonio requested a review from edubart August 2, 2024 18:51
@claudioantonio claudioantonio self-assigned this Aug 2, 2024
@claudioantonio claudioantonio added this to the Testnet 2/2 milestone Aug 2, 2024
guidanoli
guidanoli reviewed Aug 5, 2024
View reviewed changes
tests/bounties/solidity-bounty/start.sh Outdated Show resolved Hide resolved
tests/bounties/solidity-bounty/start.sh Outdated Show resolved Hide resolved
@claudioantonio claudioantonio merged commit f6acc93 into main Aug 6, 2024
2 checks passed
@claudioantonio claudioantonio deleted the improve-sol-bounty branch August 6, 2024 11:28
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@guidanoli guidanoli guidanoli approved these changes

@edubart edubart edubart approved these changes

Assignees

@claudioantonio claudioantonio

Labels
None yet
Projects
None yet
Milestone
Testnet 2/2
Development

Successfully merging this pull request may close these issues.
3 participants
@claudioantonio @edubart @guidanoli