TheWALL v3 smart contract security audit report performed by Callisto Security Audit Department
Commit hash 4d7b98e06def9a605aba06663d5c90d5a5e55c54.
In total, 2 issues were reported including:
- 2 owner privileges.
No critical security issues were found.
The owner can commitSecret
with various frequency or don't commit at all.
The frequency at with the commitSecret
and updateSecret
is called is important to the users. If a user that created a new area wants to rent or sell it and the owner didn't call commitSecret for his hash then isPremium
will return false, resulting in a loss of 30% (fee charged) even if his nonce and secret will give him a premium area. If the secret is committed later, a new owner may have access to the premium privilege.
Owner can change area price.
The audited smart contract can be deployed. Investors and users should be informed of owner privileges.
https://gist.github.com/RideSolo/38e59572c49225cddeddeae8c3fc82b5
https://gist.github.com/gorbunovperm/e56d8adfa6bbba0562d78ea7fcd1625c
https://gist.github.com/MrCrambo/20960d441ffdc3bb650cee8264e0ec9e
https://gist.github.com/danbogd/f0801e6c2e3154cbea547425dfa59ac6