Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

allow permit2 to silently fail to avoid dos #417

Open
wants to merge 3 commits into
base: dev
Choose a base branch
from
Open

allow permit2 to silently fail to avoid dos #417

wants to merge 3 commits into from

Conversation

dianakocsis
Copy link

No description provided.

hensha256
hensha256 reviewed Oct 17, 2024
View reviewed changes
contracts/base/Dispatcher.sol
PERMIT2.permit(msgSender(), permitSingle, data);
(success, output) = address(PERMIT2).call(
abi.encodeWithSignature(
'permit(address,((address,uint160,uint48,uint48),address,uint256),bytes)',
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

auditors: would love to know if theres a better practice as i know encodeWithSignature is considered error-prone. permit is an overloaded function so we cannot use encodeCall

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Nothing comes to mind, unfortunately.

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

encodeWithSelector can't be used for the same reason. Could define a separate interface that uniquely defines the permit functions, but it'll complicate the issue as opposed to just inlining it.

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Probably you could use try-catch instead of low-level call.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@kmbarry1 kmbarry1 kmbarry1 left review comments

@lucyoa lucyoa lucyoa left review comments

@hensha256 hensha256 hensha256 left review comments

@HickupHH3 HickupHH3 HickupHH3 left review comments

At least 1 approving review is required to merge this pull request.

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@dianakocsis @kmbarry1 @lucyoa @hensha256 @HickupHH3