GitBross Home Explore Help
Register Sign In
sol_Bo8des9o
/
openzeppelin-contracts
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 9f1e8086d9
Branches Tags
openzeppelin-co...
/
contracts
/
bounties
/
BreakInvariantBounty.sol

BreakInvariantBounty.sol 2.4 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687 
  1. pragma solidity ^0.4.24;
    2. 

  2. 

  3. 

  4. import "../payment/PullPayment.sol";
    5. 

  5. import "../ownership/Ownable.sol";
    6. 

  6. 

  7. 

  8. /**
    9. 

  9.  * @title BreakInvariantBounty
    10. 

  10.  * @dev This bounty will pay out to a researcher if they break invariant logic of the contract.
    11. 

  11.  */
    12. 

  12. contract BreakInvariantBounty is PullPayment, Ownable {
    13. 

  13.   bool private _claimed;
    14. 

  14.   mapping(address => address) private _researchers;
    15. 

  15. 

  16.   event TargetCreated(address createdAddress);
    17. 

  17. 

  18.   /**
    19. 

  19.    * @dev Fallback function allowing the contract to receive funds, if they haven't already been claimed.
    20. 

  20.    */
    21. 

  21.   function() external payable {
    22. 

  22.     require(!_claimed);
    23. 

  23.   }
    24. 

  24. 

  25.   /**
    26. 

  26.    * @dev Determine if the bounty was claimed.
    27. 

  27.    * @return true if the bounty was claimed, false otherwise.
    28. 

  28.    */
    29. 

  29.   function claimed() public view returns(bool) {
    30. 

  30.     return _claimed;
    31. 

  31.   }
    32. 

  32. 

  33.   /**
    34. 

  34.    * @dev Create and deploy the target contract (extension of Target contract), and sets the
    35. 

  35.    * msg.sender as a researcher
    36. 

  36.    * @return A target contract
    37. 

  37.    */
    38. 

  38.   function createTarget() public returns(Target) {
    39. 

  39.     Target target = Target(_deployContract());
    40. 

  40.     _researchers[target] = msg.sender;
    41. 

  41.     emit TargetCreated(target);
    42. 

  42.     return target;
    43. 

  43.   }
    44. 

  44. 

  45.   /**
    46. 

  46.    * @dev Transfers the contract funds to the researcher that proved the contract is broken.
    47. 

  47.    * @param target contract
    48. 

  48.    */
    49. 

  49.   function claim(Target target) public {
    50. 

  50.     address researcher = _researchers[target];
    51. 

  51.     require(researcher != address(0));
    52. 

  52.     // Check Target contract invariants
    53. 

  53.     require(!target.checkInvariant());
    54. 

  54.     _asyncTransfer(researcher, address(this).balance);
    55. 

  55.     _claimed = true;
    56. 

  56.   }
    57. 

  57. 

  58.   /**
    59. 

  59.    * @dev Transfers the current balance to the owner and terminates the contract.
    60. 

  60.    */
    61. 

  61.   function destroy() public onlyOwner {
    62. 

  62.     selfdestruct(owner());
    63. 

  63.   }
    64. 

  64. 

  65.   /**
    66. 

  66.    * @dev Internal function to deploy the target contract.
    67. 

  67.    * @return A target contract address
    68. 

  68.    */
    69. 

  69.   function _deployContract() internal returns(address);
    70. 

  70. 

  71. }
    72. 

  72. 

  73. 

  74. /**
    75. 

  75.  * @title Target
    76. 

  76.  * @dev Your main contract should inherit from this class and implement the checkInvariant method.
    77. 

  77.  */
    78. 

  78. contract Target {
    79. 

  79. 

  80.    /**
    81. 

  81.     * @dev Checks all values a contract assumes to be true all the time. If this function returns
    82. 

  82.     * false, the contract is broken in some way and is in an inconsistent state.
    83. 

  83.     * In order to win the bounty, security researchers will try to cause this broken state.
    84. 

  84.     * @return True if all invariant values are correct, false otherwise.
    85. 

  85.     */
    86. 

  86.   function checkInvariant() public returns(bool);
    87. 

  87. }
    88.