Ownable contains a function named renounceOwnership() which can be used to remove the ownership of contracts in a protocol.
This can lead toBitcoinProver, VaultBitcoinWallet& AllowedRelayers contracts becoming disowned, which will then break critical functions of the protocol.
Attack Scenario\
Accidental renounceOwnership()call can disrupt key operations in multiple contracts.
Attachments
NA
Proof of Concept (PoC) File
Manual Analysis
Revised Code File (Optional)
Consider override this function to prevent accidental call to renounceOwnership.
Github username: @erictee2802 Twitter username: 0xEricTee Submission hash (on-chain): 0x1e6166fc6d7e973cb2c08c637bcae963ec77d351feb3bd4c3553300e1fb01d60 Severity: low
Description: Description\
Ownable
contains a function namedrenounceOwnership()
which can be used to remove the ownership of contracts in a protocol.This can lead to
BitcoinProver
,VaultBitcoinWallet
&AllowedRelayers
contracts becoming disowned, which will then break critical functions of the protocol.Attack Scenario\
Accidental
renounceOwnership()
call can disrupt key operations in multiple contracts.Attachments
NA
Manual Analysis
renounceOwnership
.