Skip to content

improve: [N07] Document that payable functions cannot be included in MultiCaller functions #98

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 3 commits into from
Mar 17, 2022
Merged

improve: [N07] Document that payable functions cannot be included in MultiCaller functions #98

merged 3 commits into from
Mar 17, 2022

Conversation

@nicholaspai
Copy link
Member

@nicholaspai nicholaspai commented Mar 15, 2022

Issue:

  • [N07] payable multicall function disallows msg.value
    • The MultiCaller contract is inherited by the HubPool and SpokePool contracts. It provides the public
      multiCall function that facilitates calling multiple methods within the same contract with only a single
      call.
    • However, although it is designated as a payable function, it disallows any calls that send ETH, ie where
      msg.value is not zero.
    • This effectively makes the payable designation moot and the contradictory indications could lead to
      confusion.
    • In the context of the HubPool, specifically, relays destined for chains where ETH is required and where
      a call to loadEthForL2Calls is therefore necessary, will not be multi-callable.
      Consider either explicitly noting this limitation, or removing both the require statement and the
      payable designation.

Resolution:

  • Document payable functions that would naturally be included in multicall bundles, such as loadEthForL2Calls, this issue.

@nicholaspai nicholaspai added the OZ Audit - March Resolves issue discovered in March 2022 OZ Audit label Mar 15, 2022
chrismaree
chrismaree reviewed Mar 16, 2022
View reviewed changes
chrismaree
chrismaree reviewed Mar 16, 2022
View reviewed changes
@nicholaspai @chrismaree
Update contracts/HubPool.sol
b4a684d 
Co-authored-by: Chris Maree <christopher.maree@gmail.com>
@nicholaspai nicholaspai requested a review from mrice32 March 16, 2022 15:45
@nicholaspai @chrismaree
Update contracts/HubPool.sol
7092b8a 
Co-authored-by: Chris Maree <christopher.maree@gmail.com>
mrice32
mrice32 approved these changes Mar 17, 2022
View reviewed changes
Copy link
Contributor

@mrice32 mrice32 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM!

@nicholaspai nicholaspai merged commit f6b4112 into master Mar 17, 2022
@nicholaspai nicholaspai deleted the npai/n07 branch March 17, 2022 16:24
This was referenced Apr 6, 2022
Merged
Merged
@chrismaree chrismaree mentioned this pull request Apr 20, 2022
Merged
This was referenced May 3, 2022
Merged
Merged
Merged
@chrismaree chrismaree mentioned this pull request May 10, 2022
Merged
This was referenced May 17, 2022
Merged
Merged
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@mrice32 mrice32 mrice32 approved these changes

@chrismaree chrismaree chrismaree approved these changes

Assignees

No one assigned

Labels

OZ Audit - March Resolves issue discovered in March 2022 OZ Audit

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@nicholaspai @mrice32 @chrismaree