QA Report - Githubissues

Low

incorrect boolean logic in ERC20.sol permit function

if (recoveredAddress != address(0) && recoveredAddress != owner) {
    revert Invalid(msg.sender, owner);
}

Impact:

If ERC20 tokens from this contract get sent to address(0) (maybe for burning/removing supply purposes), an attacker can use approve() and transferFrom() address(0) to their address and retrieve the tokens.
The Approval(owner, spender, value) event will also be emit even though in reality, the spender does not have approval of owner.

Affected:

Recommendations:

I believe the desired logic to be
```
require(recoveredAddress != address(0) && recoveredAddress == owner)
```
(from https://github.com/Uniswap/v2-core/blob/8b82b04a0b9e696c0e83f8b2f00e5d7be6888c79/contracts/UniswapV2ERC20.sol#L91)
If so, it should be recoveredAddress == address(0) || recoveredAddress != owner (DeMorgan's Law)

In MarketPlace.sol:

ISwivel(swivel).authRedeem(p, u, market.cTokenAddr, t, a);

ISwivel in Interfaces.sol contains the interface:

interface ISwivel {
  function authRedeem(uint8 p, address u, address c, address t, uint256 a) external returns (bool);
}

But Swivel.sol does not have such a function. (Closest to it) Only authRedeemZcToken().

Affected Code: