sofianeOuafir
commented
2 years ago This is an issue we intend to investigate and fix if indeed it is an issue
Open code423n4 opened 2 years ago
sofianeOuafir
commented
2 years ago This is an issue we intend to investigate and fix if indeed it is an issue
deluca-mike
commented
2 years ago This is a valid high risk issue. Also, for reference, the checks-effects-interactions (CEI) pattern suggests you, in this order:
Lines of code
https://github.com/code-423n4/2022-03-joyn/blob/main/core-contracts/contracts/CoreCollection.sol#L139-L167 https://github.com/code-423n4/2022-03-joyn/blob/main/core-contracts/contracts/ERC721Payable.sol#L50-L56
Vulnerability details
Impact
The
mintToken()function is called to mint unique tokens from anERC721collection. This function will either require users to provide a merkle proof to claim an airdropped token or pay a fee in the form of apayableToken. However, because thepayableTokenis paid before a token is minted, it may be possible to reenter themintToken()function if there is a callback attached before or after the token transfer. BecausetotalSupply()has not been updated for the new token, a user is able to bypass thetotalSupply() + amount <= maxSupplycheck. As a result, if the user mints the last token, they can reenter and mint duplicate NFTs as the waytokenIdis generated will wrap around to the start again.Proof of Concept
For the sake of this example, let's say
startingIndex = 0andmaxSupply = 100.tokenIdis minted according to((startingIndex + totalSupply()) % maxSupply) + 1. If we see that a user mints a token wheretotalSupply() = maxSupply - 1 = 99and they reenter the function, then the next token to mint will actually be of index1astotalSupply() % maxSupply = 0. Calculating the firsttokenId, we get((0 + 0) % maxSupply) + 1 = 1which is a duplicate of our example.Recommended Mitigation Steps
Consider adding reentrancy protections to prevent users from abusing this behaviour. It may also be useful to follow the checks-effects pattern such that all external/state changing calls are made at the end.