Wallet Inplug-v1 (previously known as v5) is custom version of wallet for use instead of v4.
There are three main differences from previous versions:
- execute arbitrary code onchain. User can pass a continuation to be executed -- this is useful for predicting unsafe random.
- plugin functionality: plugins are continuations, like small inlined contracts. They may be executed upon getting an incoming message. Actual plugin's code is stored in masterchain, so that plugins are just masterchain libraries.
- secp256r1 keys are supported in addition to Ed25519 ones.
All plugin functions must be inlined or inline_refed, as otherwise call will go out of plugin control so the function won't be found.
- Making all functions inline is not the optimal way if you call them in different parts of code.
- Mentioned that
inline_refis also working. Putting functions in cell references incurs no significant overhead and allows to use them in several places.
- Mentioned that
- Plugins are considered to be trusted and called without isolation but they should not be trusted.
- Verifying that plugin outgoing messages are valid is expensive and involves pretty large number of cases. Thus, I think that public plugins should come with formal proof of properties checkable by wallet application.
- Continuations in signed messages are considered to be trusted and called without isolation but they should not be trusted.
- In presence of isolation, calling code onchain does not make much sense except for forming large software-generated messages. No isolation allows to use wallet v5 for more exotic usecases, such as changing public key.
- The fact whether execution of some code breaks the wallet should be determined offchain before signing message.
- Timestamp of the signed message does not have upper limit, delayed message attack is possible.
- Delayed messages may be useful for prolonging domain contracts.
- If wallet application signs the message, nothing saves it from setting the wrong upper limit timestamp as well.
- If a delayed signed message is recorded, it is possible to change seqno (or public key, though it's more complicated way) to invalidate that message.
- Plugins should be tested for reentrancy issues just like Ethereum smart contracts.