-
Notifications
You must be signed in to change notification settings - Fork 11.9k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Library for safe interaction with untrusted contracts #3544
Comments
Discussed before in #3168. See our thoughts for not including this in #3168 (comment). In summary, there are some contexts where this protection is useful, but we believe the vast majority of users are not affected by this attack and we do not want to encourage unnecessary use of the pattern. Feel free to share if you disagree with this thinking. Will close as it has been discussed very recently. |
@frangio I understand the arguments about the reach of use for this library. Nonetheless, let me share my use case for this library: I've built a batch distributor which is essentially a helper smart contract for batch sending both native and ERC-20 tokens. Now, this contract is planned to be used by projects to distribute e.g. airdrops to pre-registered wallets, distribute funding via ETH to registered wallets (for devs), or to pay crypto salaries to employees in one batch, just to name a few (think about it as a modern version of disperse.app). The major reason why I use the low-level call Now in the context of my batch distributor, it can well be that you have a list of 100-200 addresses to send ETH or ERC20 tokens to. Assume one or two of the addresses try to returnbomb the ETH distribution and make the sender pay unnecessary money. There are two ways to resolve that:
If the sender of a batch is not an advanced user, he/she might even trigger a couple of times the same transaction because Etherscan will just show an OOG error and probably he/she will not use e.g. Tenderly to debug the failing transaction in detail. It might be a niche case, but I still wanted to share that with you. It's relevant for a use case where you send batches of ETH to a large list of "unknown" addresses. |
In the case you describe you're not interested in the returndata at all, so it's not necessary to copy it to memory. If you don't copy it, the target contract can't cause any additional gas to be wasted. This was addressed by the compiler in ethereum/solidity#12647, and the fix was released in 0.8.13 apparently (not in the changelog so I've asked to confirm ethereum/solidity#12684 (comment)). |
Background
A low-level Solidity call will copy any amount of bytes to local memory. When bytes are copied from
returndata
tomemory
, the memory expansion cost is paid. This means that when using a standard Solidity call, the callee can "returnbomb" the caller, imposing an arbitrary gas cost. Because this gas is paid by the caller and in the caller's context, it can cause the caller to run out of gas and halt execution.Details
OpenZeppelin provides a library for safe interactions with untrusted contracts. Specifically, starting with
call
andstaticcall
. This would be in line with the current safe libraries such asSafeERC20
orSafeCast
.The text was updated successfully, but these errors were encountered: