RideSolo
commented
5 years ago auditing time: ~3 days.
Closed yuriy77k closed 5 years ago
RideSolo
commented
5 years ago auditing time: ~3 days.
yuriy77k
commented
5 years ago @RideSolo assigned
gorbunovperm
commented
5 years ago Estimated auditing time is 3 days.
yuriy77k
commented
5 years ago @gorbunovperm assigned
MrCrambo
commented
5 years ago Auditing time 2 days.
yuriy77k
commented
5 years ago @MrCrambo assigned
gorbunovperm
commented
5 years ago My report is finished.
yuriy77k
commented
5 years ago Bitcademy v.2 security audit report performed by Callisto Security Audit Department
In total, 13 issues were reported including:
5 medium severity issues.
7 low severity issues.
1 minor observation.
No critical security issues were found.
addToWhitelist or addManyToWhitelist functions should not reset the value of tokenToClaim[_beneficiary] to zero, the previous version of the project doesn't include this issue.
tokenToClaim.Others scenario can be described related to this issue like social engineering against a big investor, etc ...
If the tokenToClaim of a user are not null, the user should be able to withdraw his ether back if set to null by the dapp.
This issue is applicable for both Crowdsale and PreICOBitcademyGold contracts.
https://github.com/RideSolo/Bitcademy_ICO/blob/master/contracts/PreICOBitcademyGold.sol#L223#L226
https://github.com/RideSolo/Bitcademy_ICO/blob/master/contracts/PreICOBitcademyGold.sol#L232#L237
https://github.com/RideSolo/Bitcademy_ICO/blob/master/contracts/Crowdsale.sol#L228#L231
https://github.com/RideSolo/Bitcademy_ICO/blob/master/contracts/Crowdsale.sol#L237#L242
withdrawAfterMainSale function allow the investors to withdraw the tokens that they bought even if the crowdsale has failed knowing that they will also be able to withdraw their funds.
Contract developers should prevent them from withdrawing tokens by adding require(goalReached()).
This issue is applicable for both Crowdsale and PreICOBitcademyGold contracts.
https://github.com/RideSolo/Bitcademy_ICO/blob/master/contracts/PreICOBitcademyGold.sol#L488#L496
https://github.com/RideSolo/Bitcademy_ICO/blob/master/contracts/Crowdsale.sol#L492#L500
A user that is whitelisted and buy tokens, if he is removed from the whitelist later, the same user will not be able to withdraw his tokens if the crowdsale succeed. developers should implement a mechanism to allow him to refund his invested ether.
This issue is applicable for both Crowdsale and PreICOBitcademyGold contracts.
https://github.com/RideSolo/Bitcademy_ICO/blob/master/contracts/Crowdsale.sol#L248#L250
https://github.com/RideSolo/Bitcademy_ICO/blob/master/contracts/PreICOBitcademyGold.sol#L243#L245
The purpose of rate is not clear. In one place its "No of wei needed for each token", but in others "No of tokens per ether" what is the reverse value.
To get the token amount (using _getTokenAmount) from the ether sent to Crowdsale contracts, _weiAmount is divided by rate that is updated every 3 hours by the project team using setRate.
The token decimals is set to 18 same as ETH decimals, and the price in USD of 1 token is set to be 0.038 USD At the moment of writing 1 ETH should provide the investors with ~5947 tokens without taking into account the bonuses, but since _weiAmount is divided and not multiplied by a certain rate the expected tokens will never be provided. For example if rate is set to the minimum value possible (rate = 1), then an investor that send 1 ETH will receive 1 token.
_getTokenAmount function member of PreICOBitcademyGold contract use the exact same _getTokenAmount function as Crowdsale contract, knowing that the presale should provide 60% bonus, than the implementation of the highlighted function is wrong.
https://github.com/bitcademyfb/Bitcademy_ICO/blob/master/contracts/Crowdsale.sol#L349#L464
https://github.com/bitcademyfb/Bitcademy_ICO/blob/master/contracts/PreICOBitcademyGold.sol#L344#L460
_getTokenAmount Logical ErrorremainingTokens,noOfTokens and weiAmount variables are updated only if one of the condition if(tokensInCondition > remainingTokens.sub(X*(10**18))) is true, an else should be added to all the condition to handle the opposite case false and update their values to the following:
noOfTokens = noOfTokens.add(tokensInCondition).weiAmount = 0.remainingTokens = remainingTokens.sub(tokensInCondition)remainingTokens in every condition if(tokensInCondition > remainingTokens.sub(X*(10**18))) if it is true, should be set as follow:
remainingTokens = remainingTokens.sub(tokensInCondition)https://github.com/bitcademyfb/Bitcademy_ICO/blob/master/contracts/Crowdsale.sol#L349#L464
allowance function as defined by the ERC20 standard has two arguments, the first one is the tokens owners _owner and the second one is the tokens spender _spender, however the constructor contain the following line for both Crowdsale and PreICOBitcademyGold contracts:
remainingTokens = token.allowance(address(this) , tokenHolder);The addresses has to be swapped to get the right value since the spender is the contract address not the opposite.
https://github.com/RideSolo/Bitcademy_ICO/blob/master/contracts/Crowdsale.sol#L169
https://github.com/RideSolo/Bitcademy_ICO/blob/master/contracts/PreICOBitcademyGold.sol#L166
release function member or BitcademyVesting contract uses unreleased local variable for multi purposes, at each call of the function unreleased is set with _token.balanceOf(this) the same amount is accumulated to released state variable at every call, however released state variable isn't use in the contract and do not create any direct impact.
unrealease local variable is again set with another value ReleaseCap.div(noOfMembers.mul(Releases)).
Contract developers should use different local variables for every action, especially when the naming will lead to confusion.
https://github.com/RideSolo/Bitcademy_ICO/blob/master/contracts/BitcademyVesting.sol#L82
https://github.com/RideSolo/Bitcademy_ICO/blob/master/contracts/BitcademyVesting.sol#L90
https://github.com/RideSolo/Bitcademy_ICO/blob/master/contracts/BitcademyVesting.sol#L91
_forwardFunds function defined on Crowdsale and PreICOBitcademyGold contract uses refundWeiAmt that was previously declared on buyTokens function for both contract raising an Undeclared identifier compiler error.
https://github.com/RideSolo/Bitcademy_ICO/blob/master/contracts/PreICOBitcademyGold.sol#L465#L468
https://github.com/RideSolo/Bitcademy_ICO/blob/master/contracts/Crowdsale.sol#L469#L472
_forwardFunds function should be updated as following:
function _forwardFunds(uint _value) internal {
vault.deposit.value(_value)(msg.sender);
investors.push(msg.sender);
}and called as followed:
_forwardFunds(weiAmount);https://github.com/RideSolo/Bitcademy_ICO/blob/master/contracts/BitcademyToken.sol#L5#L18
The constructor contain the following line for both Crowdsale and PreICOBitcademyGold contracts:
token.approve(address(this), supply_cap.mul(10**18));The contract address is approving to itself supply_cap value of tokens to be spent, this line doesn't add anything to the contract.
The approval of tokens to be spent by the contract for the ICO should be done by tokenHolder address.
https://github.com/RideSolo/Bitcademy_ICO/blob/master/contracts/Crowdsale.sol#L168
https://github.com/RideSolo/Bitcademy_ICO/blob/master/contracts/PreICOBitcademyGold.sol#L165
If the number of tokens exceeds the remaining amount in this round then in next condition block will use previous price with bonus. And the bonus of coming round will be added to this price.
if (remainingTokens < 300000000*(10**18) && remainingTokens >= 250000000*(10**18) && weiAmount > 0){
currentRate = currentRate.mul(100);
currentRate = currentRate.div(125); // plus a 25 percent bonus.
// ...
}
if (remainingTokens < 250000000*(10**18) && remainingTokens >= 200000000*(10**18) && weiAmount > 0 ){
currentRate = currentRate.mul(100);
currentRate = currentRate.div(120); // plus a 20 percent bonus. 55 percent bonus at all.
// ...
}In this case investor will get 55 percent bonus instead 20.
tokenHolder should deploy Crowdsale contract.token.approve call in the constructor means that msg.sender approve supply_cap-value of tokens to contract address. But given the line 305 - token.transferFrom(tokenHolder,_beneficiary, _tokenAmount), we assume that all tokens are owned by tokenHolder. It turns out that only the tokenHolder can call token.approve.
If you want to use approve on the constructor then only the tokenHolder can deploy the contract. And in this case _tokenHolder parameter of this function is excessive. Use tokenHolder = msg.sender.
In addMember there are no checking for zero address.
Add checking for zero address.
require(_reserve != address(0));These contracts have some issues that should be fixed before deploy.
https://gist.github.com/yuriy77k/e4572e21259429080e3a02d05dd92ac5
https://gist.github.com/yuriy77k/595e6e15aa2b580111cc23f8db9977a0
https://gist.github.com/yuriy77k/4f5e00f2ad3e47664230dfd27c9a9a72
yuriy77k
commented
5 years ago @MrCrambo note about you report:
Not a security issue.
yuriy77k
commented
5 years ago @RideSolo notes about your report:
ICO Autonomy. It's normal to allow owner make some not critical changes in Force Majeure situation. It's not a security issue.
Transfer Event looks like: event Transfer(address from, address to, uint tokens); and the second parameter can not be balances[_reserve].
RideSolo
commented
5 years ago @yuriy77k
* [ICO Autonomy](https://gist.github.com/yuriy77k/e4572e21259429080e3a02d05dd92ac5#34-ico-autonomy). It's normal to allow owner make some not critical changes in Force Majeure situation. It's not a security issue.
This is just a matter of opinion, for me I do think that using blockchain for ICO has to be purely automated otherwise a centralized system can do the job. This kind of implementation make both project and investors at risk, as described on the report.
* [Transfer Event](https://gist.github.com/yuriy77k/e4572e21259429080e3a02d05dd92ac5#312-transfer-event) looks like: `event Transfer(address from, address to, uint tokens);` and the second parameter can not be `balances[_reserve]`.
About this, I meant the third uint tokens parameter not the second since reserve address doesn't contain totalSupply_ tokens.
Audit request
Project : Bitcademy We're bitcademy.io - empowering youth around the world in the football industry. Our plan is to have a scalable marketplace connecting fans with young players, but we want to build our own academies too (focusing on underdeveloped countries). Below are the details. 1) Standard : ERC20 2) Token Name : Bitcademy Gold 3) Symbol (Ticker) : BTMG 4) Decimal points : 18 5) Total Supply : 1,000,000,000 6) ICO (50% of total supply) : 500,000,000 7) Token Price : 0.038 USD (Ethereum price to be checked every 3 hours on the network) 8) ICO Token Sales Release : 1 month after the ICO 9) Team tokens : Vested over 18 months. First vesting after 3 months from release then onwards proportional monthly vesting. 15% of total supply will be for team and is to be kept in multisig wallet. 10) Pre ICO duration : 1 month - 01/12/2018 to 31/12/2018 11) Pre ICO minimum investment : 1 ETH 12) Pre ICO Bonus : 60% 13) Pre ICO Tokens (excluding bonus) 93,750,000 14) Main Sale duration : 2 months - 01/02/2019 to 31/03/2019 15) Main Sale minimum investment : 100 USD 16) Main Sale Bonus : 30% for 1st 38,461,538 tokens sold 25% for next 40,000,000 tokens sold 20% for next 41,666,667 tokens sold 15% for next 43,478,261 tokens sold 10% for next 45,454,545 tokens sold 5% for next 47,619,048 tokens sold 0% for remaining 50,000,000 tokens sold 17) Advisors : 10% of total supply is to be distributed among advisors 18) Hard Cap : 15 million USD 19) Soft Cap : 4 million USD 20) Currency accepted : ETH and BTC, Fiat 21) Funds raised in ETH and BTC : To be stored in multisig wallet 22) Refund of investment (to all investors) : If soft cap is not reached 23) Whitlisting for participation in Pre-ICO and ICO : Yes 24) Team and Advisor token vesting : Option to specify who will have tokens vested and who will get them immediately with the token release after ICO. This is required as some advisors may get complete tokens upon release with no vesting.
Source code
https://github.com/bitcademyfb/Bitcademy_ICO/tree/master/contracts
Disclosure policy
firasayub@bitcademy.io
Platform
ETH
Complexity
Medium