[ANN] Security Audits of POA Network


#1

AuthorityRound consensus protocol and implementation

POA Network consensus and governance smart contracts

Mobile wallet

Infrastructure, network attacks, DDoS


POA Network. News and updates #23
#2

No Solidity expert but there has been something troubling me about the binding of an active Ballot and what POA consensus it is using.

The way current code is structured and used is the following possible?

  1. addValidatorBallotA is created using consensusA ( say some voting occurs )
  2. changeConsensusBallot to consensusB is created and approved before (1) completes
  3. addValidatorBallotA is now pointing to consensusB

If so, seems undesirable.


#3

BallotA will not succeed because the address has changed for the ballot contract


#4

OK. I’ll see if there is a test case for this use case.