Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix(contracts): quote management for L2->L1 hooks #4552

Merged
merged 56 commits into from
Oct 31, 2024
Merged

fix(contracts): quote management for L2->L1 hooks #4552

merged 56 commits into from
Oct 31, 2024

Conversation

aroralanuk
Copy link
Contributor

@aroralanuk aroralanuk commented Sep 23, 2024
edited
Loading

Description

  • check for sufficient fees in AbstractMessageIdAuthHook and refund surplus
  • add a child hook to OPL2ToL1Hook and ArbL2ToL1Hook to use the igp to pay for the destination gas fees

Note: LayerzeroL2Hook currently also refunds from msg.value, will make it into issue to be fixed later as we're using the layerzero hooks right now.

Drive-by changes

  • None

Related issues

Backward compatibility

No

Testing

Fuzz

@aroralanuk
add fix
1560f5c
@aroralanuk
move to inside
44379e1
@aroralanuk
opl2tol1
d680e50
@aroralanuk
arb
ca26e88
@aroralanuk
rm revertWhen_invalidMetadata
a5c4b62
@aroralanuk
msg_value
54b4327
@aroralanuk
direct call
66c3bb7
@aroralanuk
invalid ism
e98382d
@aroralanuk
no both branch test
56ea53c
@aroralanuk
unauth hook
30982d2
@aroralanuk
invalid messageId
88cb33f
@aroralanuk
5164
baef8ff
@aroralanuk
try catch
9684835
@aroralanuk
formatting
6c31fbf
@aroralanuk
opstack
f64611d
@aroralanuk
minor edits
ac3613e
@aroralanuk
minor fixes
4d293ea
@aroralanuk
override inconsistent tests
fb66306
@aroralanuk
Merge branch 'kunal/external-bridge-refactor' into kunal/HL2408-002-fix
13c61fd
@aroralanuk
opstack change quote
fb089e2
@aroralanuk
Merge branch 'kunal/external-bridge-refactor' into kunal/HL2408-002-fix
c70ac54
@aroralanuk
fix tests
e6c5b10
@aroralanuk
remove reduntant arbitrary call
08dda88
@aroralanuk
rm
37ecb27
@aroralanuk
changeset
1dd0fc3
@aroralanuk
add verifyMessageId
c99eb24
@aroralanuk
add test
97b7bc8
@aroralanuk
Merge branch 'main' into kunal/verify-message-id
c6b5f76
@aroralanuk
add to current value
bef3470
@aroralanuk
revert
541be43
@aroralanuk aroralanuk changed the base branch from main to kunal/HL2408-002-fix September 26, 2024 07:56
Base automatically changed from kunal/HL2408-002-fix to main October 22, 2024 07:22
github-advanced-security[bot]
github-advanced-security bot found potential problems Oct 29, 2024
View reviewed changes
solidity/contracts/hooks/ArbL2ToL1Hook.sol
// Immutable quote amount
uint256 public immutable GAS_QUOTE;
// child hook to call first
IPostDispatchHook public immutable childHook;

Check notice

Code scanning / Olympix Integrated Security

Some state variables are not being fuzzed in test functions, potentially leaving vulnerabilities unexplored. For more information, visit: http://detectors.olympixdevsectools.com/article/web3-vulnerability/unfuzzed-variables Low

Some state variables are not being fuzzed in test functions, potentially leaving vulnerabilities unexplored. For more information, visit: http://detectors.olympixdevsectools.com/article/web3-vulnerability/unfuzzed-variables
solidity/contracts/hooks/ArbL2ToL1Hook.sol Dismissed Show dismissed Hide dismissed
solidity/contracts/hooks/OPL2ToL1Hook.sol
// Immutable quote amount
uint32 public immutable GAS_QUOTE;
// child hook to call first
IPostDispatchHook public immutable childHook;

Check notice

Code scanning / Olympix Integrated Security

Some state variables are not being fuzzed in test functions, potentially leaving vulnerabilities unexplored. For more information, visit: http://detectors.olympixdevsectools.com/article/web3-vulnerability/unfuzzed-variables Low

Some state variables are not being fuzzed in test functions, potentially leaving vulnerabilities unexplored. For more information, visit: http://detectors.olympixdevsectools.com/article/web3-vulnerability/unfuzzed-variables
solidity/contracts/hooks/OPL2ToL1Hook.sol
require(
msg.value >= metadata.msgValue(0) + GAS_QUOTE,
"OPL2ToL1Hook: insufficient msg.value"
bytes memory payload = abi.encodeCall(

Check warning

Code scanning / Olympix Integrated Security

Local variables in test functions are not properly fuzzed, potentially reducing the effectiveness of property-based testing. For more information, visit: http://detectors.olympixdevsectools.com/article/web3-vulnerability/unfuzzed-local-variables Medium

Local variables in test functions are not properly fuzzed, potentially reducing the effectiveness of property-based testing. For more information, visit: http://detectors.olympixdevsectools.com/article/web3-vulnerability/unfuzzed-local-variables
solidity/contracts/hooks/OPStackHook.sol
require(
metadata.msgValue(0) < 2 ** 255,
"OPStackHook: msgValue must be less than 2 ** 255"
bytes memory payload = abi.encodeCall(

Check warning

Code scanning / Olympix Integrated Security

Local variables in test functions are not properly fuzzed, potentially reducing the effectiveness of property-based testing. For more information, visit: http://detectors.olympixdevsectools.com/article/web3-vulnerability/unfuzzed-local-variables Medium

Local variables in test functions are not properly fuzzed, potentially reducing the effectiveness of property-based testing. For more information, visit: http://detectors.olympixdevsectools.com/article/web3-vulnerability/unfuzzed-local-variables
solidity/contracts/hooks/layer-zero/LayerZeroV2Hook.sol
@@ -72,7 +78,9 @@
options,
false // payInLzToken
);
lZEndpoint.send{value: msg.value}(msgParams, refundAddress);

uint256 quote = _quoteDispatch(metadata, message);

Check warning

Code scanning / Olympix Integrated Security

Local variables in test functions are not properly fuzzed, potentially reducing the effectiveness of property-based testing. For more information, visit: http://detectors.olympixdevsectools.com/article/web3-vulnerability/unfuzzed-local-variables Medium

Local variables in test functions are not properly fuzzed, potentially reducing the effectiveness of property-based testing. For more information, visit: http://detectors.olympixdevsectools.com/article/web3-vulnerability/unfuzzed-local-variables
solidity/contracts/hooks/layer-zero/LayerZeroV2Hook.sol
lZEndpoint.send{value: msg.value}(msgParams, refundAddress);

uint256 quote = _quoteDispatch(metadata, message);
lZEndpoint.send{value: quote}(msgParams, refundAddress);

Check warning

Code scanning / Olympix Integrated Security

Calling a function without checking the return value may lead to silent failures. For more information, visit: http://detectors.olympixdevsectools.com/article/web3-vulnerability/unused-return-function-call Medium

Calling a function without checking the return value may lead to silent failures. For more information, visit: http://detectors.olympixdevsectools.com/article/web3-vulnerability/unused-return-function-call
solidity/contracts/hooks/layer-zero/LayerZeroV2Hook.sol
lZEndpoint.send{value: msg.value}(msgParams, refundAddress);

uint256 quote = _quoteDispatch(metadata, message);
lZEndpoint.send{value: quote}(msgParams, refundAddress);

Check warning

Code scanning / Olympix Integrated Security

Using send() without checking the return value may lead to silent failures of ether transmittal. For more information, visit: http://detectors.olympixdevsectools.com/article/web3-vulnerability/unchecked-send Medium

Using send() without checking the return value may lead to silent failures of ether transmittal. For more information, visit: http://detectors.olympixdevsectools.com/article/web3-vulnerability/unchecked-send
solidity/contracts/hooks/libs/AbstractMessageIdAuthHook.sol

_sendMessageId(metadata, message);

uint256 _overpayment = msg.value - _quoteDispatch(metadata, message);

Check warning

Code scanning / Olympix Integrated Security

Local variables in test functions are not properly fuzzed, potentially reducing the effectiveness of property-based testing. For more information, visit: http://detectors.olympixdevsectools.com/article/web3-vulnerability/unfuzzed-local-variables Medium

Local variables in test functions are not properly fuzzed, potentially reducing the effectiveness of property-based testing. For more information, visit: http://detectors.olympixdevsectools.com/article/web3-vulnerability/unfuzzed-local-variables
solidity/contracts/hooks/libs/AbstractMessageIdAuthHook.sol Fixed Show fixed Hide fixed
github-advanced-security[bot]
github-advanced-security bot found potential problems Oct 29, 2024
View reviewed changes
solidity/contracts/hooks/libs/AbstractMessageIdAuthHook.sol

uint256 _overpayment = msg.value - _quoteDispatch(metadata, message);
if (_overpayment > 0) {
address _refundAddress = metadata.refundAddress(

Check warning

Code scanning / Olympix Integrated Security

Local variables in test functions are not properly fuzzed, potentially reducing the effectiveness of property-based testing. For more information, visit: http://detectors.olympixdevsectools.com/article/web3-vulnerability/unfuzzed-local-variables Medium

Local variables in test functions are not properly fuzzed, potentially reducing the effectiveness of property-based testing. For more information, visit: http://detectors.olympixdevsectools.com/article/web3-vulnerability/unfuzzed-local-variables
@aroralanuk aroralanuk added this pull request to the merge queue Oct 31, 2024
Merged via the queue into main with commit 469f2f3 Oct 31, 2024
36 checks passed
@aroralanuk aroralanuk deleted the kunal/check-suff-refund-extra branch October 31, 2024 01:37
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@yorhodes yorhodes yorhodes approved these changes

@tkporter tkporter Awaiting requested review from tkporter tkporter is a code owner

@Skunkchain Skunkchain Awaiting requested review from Skunkchain

@avious00 avious00 Awaiting requested review from avious00

@ltyu ltyu Awaiting requested review from ltyu ltyu is a code owner

@eunseong-theori eunseong-theori Awaiting requested review from eunseong-theori

@jmrossy jmrossy Awaiting requested review from jmrossy jmrossy is a code owner

@paulbalaji paulbalaji Awaiting requested review from paulbalaji paulbalaji is a code owner

Assignees
No one assigned
Labels
None yet
Projects
Hyperlane Tasks
Status: Done
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@aroralanuk @yorhodes @eunseong-theori