This repository has been archived by the owner on Sep 20, 2023. It is now read-only.
ProxyFactory create2 and blackholing of funds #3392
Assignees
Labels
bug
Something isn't working as intended
P2
Small number of users are affected, major cosmetic issue
smart contracts
Comments
micahalcorn
added
the
P1
|
I'm in favor. It's quite painful the way it fails now - it basically fails silently. Not to mention wasting a pile of gas. |
|
I think this works. Just need to verify that the predicted proxy address doesn't change if we start using a new proxy factory. eg address of deployed proxy via factory 1 == deployed proxy via factory 2 |
|
Ah, that's a good note, @nick. It will undoubtedly change the address... origin/packages/graphql/src/utils/proxy.js Lines 35 to 37 in d7c40d5 I guess we'd have to iterate through each ProxyFactory address, compute the predicted proxy address, and check. That is a drawback, but not sure a deal breaker here. |
mikeshultz
added a commit
that referenced
this issue
Sep 20, 2019
4 tasks
mikeshultz
added
P2
|
There seems to be more agreement that this isn't urgent, dropping to a P2. |
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
This is a bit of an edge case, but does actually waste money. If a user attempts to deploy a proxy (with the same proxyfactory nonce) when one already exists, it dies. When it dies, it continues running the
initializer(wrapped transaction) to0x0000000000000000000000000000000000000000. Of course this isn't an actual contract, and if the the transaction carried any value(ETH), that value would be sent to the black hole that is0x00..00. Example tx:0x8a9650f337466d6d4ecda51ec95fd500d914ad5b3e5abb50eb253eea4240f4fc1 event was fired:
I propose adding a check to see if the address returned by
create2is zero to bothcreateProxyWithNonce()andcreateProxyWithSenderNonce(). If it is, revert. Absolutely do not run this initializer.origin/packages/contracts/contracts/proxy/ProxyFactory.s
Lines 76 to 82 in 42aa0be
I think uprading will be clean. We will need to add support for multiple
ProxyFactorycontracts for anything that tracks events(e.g. listener). Already deployed user proxies are not affected.The text was updated successfully, but these errors were encountered: