allow transfer if call is restricted #2553
Closed
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
ramacarlucho
requested review from
facs95 and
MalteHerrmann
and removed request for
a team
facs95
reviewed
May 9, 2024
GAtom22
reviewed
May 10, 2024
| @@ -39,6 +39,11 @@ func checkDisabledCreateCall( | |||
| permissions *evmtypes.AccessControl, | |||
| ) error { | |||
| to := txData.GetTo() | |||
| data := txData.GetData() | |||
| // If its not a contract creation or contract call this check is irrelevant | |||
There was a problem hiding this comment.
But what about the fallback and receive functions of a contract?
An EOA can trigger a contract call by just sending funds to it.
We could identify this by checking if the to address is a contract, e.g. checking if the address has code
There was a problem hiding this comment.
this an important point that should be taken into consideration
There was a problem hiding this comment.
I suggest for contracts checking the method ID from the call data (i.e the first 4 bytes) and comparing it with the receive and fallback bytes
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Description
Currently in the mono antehandler during the message validation, we check that the CREATE or CALL OP codes are restricted, and the validation fails in case it is.
With the addition of the permissioned evm, the signer of the transaction can be whitelisted an allowed the operation. In the first implementation, the check for a whitelisted address was performed during execution. With this approach we add the check for whitelist address in the antehandler. This requires a small refactor to check the permissions after the msg signature (since we need to know who sends the message)
On base denom transfers
If we restrict the CALL opcode, even the aevmos coin transfer will be restricted. So only cosmos txns will be available, and this is not very useful.
To allow base denom transfers we add the check txdata is empty, to verify that is not a contract call. But this does not cover the case of
depositorfallback. So to prevent this, we simply block all transactions which recipient is a contract.Closes: EVM-148
Author Checklist
All items are required. Please add a note to the item if the item is not applicable and
please add links to any relevant follow up issues.
I have...
Reviewers Checklist
All items are required.
Please add a note if the item is not applicable
and please add your handle next to the items reviewed
if you only reviewed selected items.
I have...
Unreleasedsection inCHANGELOG.md