how to limit excess authority when registering a storage node #8594
Labels
cosmic-swingset
package: cosmic-swingset
enhancement
New feature or request
mn2
Issue related to a MN2 dapp
needs-design
security
What is the Problem Being Solved?
In a permit for a core-eval, a contract can request access to
chainStorage
like this:This grants excess authority and the ability to overwrite other storage nodes.
Description of the Design
A similar approach to this suggestion, where chainStorage is limited to particular path(s):
Security Considerations
The goal of this ticket is to limit excess authority granted around
chainStorage
during the core-eval process.Scaling Considerations
Test Plan
Upgrade Considerations
The text was updated successfully, but these errors were encountered: