[ANN] Security Audits of POA Network

AuthorityRound consensus protocol and implementation

POA Network consensus and governance smart contracts

Mobile wallet

Infrastructure, network attacks, DDoS

6 Likes

No Solidity expert but there has been something troubling me about the binding of an active Ballot and what POA consensus it is using.

The way current code is structured and used is the following possible?

  1. addValidatorBallotA is created using consensusA ( say some voting occurs )
  2. changeConsensusBallot to consensusB is created and approved before (1) completes
  3. addValidatorBallotA is now pointing to consensusB

If so, seems undesirable.

BallotA will not succeed because the address has changed for the ballot contract

OK. I’ll see if there is a test case for this use case.

1 Like