Skip to content

Problem: sender address verification is not decoupled from execution #358

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 8 commits into from
Sep 22, 2023
Merged

Problem: sender address verification is not decoupled from execution #358

merged 8 commits into from
Sep 22, 2023

Conversation

@yihuang
Copy link

@yihuang yihuang commented Sep 22, 2023
edited
Loading

Description

WIP: #355

Solution:

  • to decouple sender address verification from execution, we must first enforce user setting the From field in the msg
  • change From field from string to bytes, avoid heavy checksum hex encoding of go-ethereum
  • also minimize checksum hex encoding in other places in state machine.

Benchmark Results

Run the BenchmarkERC20Transfer in cronos repo.

goos: darwin
goarch: amd64
pkg: github.com/crypto-org-chain/cronos/v2/app
cpu: Intel(R) Core(TM) i7-9750H CPU @ 2.60GHz
                         │ /tmp/after.txt │           /tmp/after2.txt           │
                         │     sec/op     │    sec/op     vs base               │
ERC20Transfer/memdb-12       612.9m ± 19%   602.1m ± 12%        ~ (p=0.818 n=6)
ERC20Transfer/leveldb-12     700.5m ± 18%   593.4m ±  1%  -15.28% (p=0.002 n=6)
ERC20Transfer/memiavl-12     604.1m ± 28%   582.6m ± 23%        ~ (p=0.240 n=6)
geomean                      637.7m         592.6m         -7.07%

                         │ /tmp/after.txt │          /tmp/after2.txt           │
                         │      B/op      │     B/op      vs base              │
ERC20Transfer/memdb-12       176.4Mi ± 0%   174.1Mi ± 0%  -1.32% (p=0.002 n=6)
ERC20Transfer/leveldb-12     178.2Mi ± 0%   175.9Mi ± 0%  -1.30% (p=0.002 n=6)
ERC20Transfer/memiavl-12     171.0Mi ± 0%   168.7Mi ± 0%  -1.36% (p=0.002 n=6)
geomean                      175.2Mi        172.9Mi       -1.33%

                         │ /tmp/after.txt │          /tmp/after2.txt          │
                         │   allocs/op    │  allocs/op   vs base              │
ERC20Transfer/memdb-12        2.802M ± 0%   2.776M ± 0%  -0.93% (p=0.002 n=6)
ERC20Transfer/leveldb-12      2.801M ± 0%   2.775M ± 0%  -0.93% (p=0.002 n=6)
ERC20Transfer/memiavl-12      2.747M ± 0%   2.721M ± 0%  -0.95% (p=0.002 n=6)
geomean                       2.783M        2.757M       -0.93%

For contributor use:

  • Targeted PR against correct branch (see CONTRIBUTING.md)
  • Linked to Github issue with discussion and accepted design OR link to spec that describes this work.
  • Code follows the module structure standards.
  • Wrote unit and integration tests
  • Updated relevant documentation (docs/) or specification (x/<module>/spec/)
  • Added relevant godoc comments.
  • Added a relevant changelog entry to the Unreleased section in CHANGELOG.md
  • Re-reviewed Files changed in the Github PR explorer

For admin use:

  • Added appropriate labels to PR (ex. WIP, R4R, docs, etc)
  • Reviewers assigned
  • Squashed all commits, uses message "Merge pull request #XYZ: [title]" (coding standards)

Problem: sender address verification is not decoupled from execution
7dae6f2 
WIP: #355

Solution:
- to decouple sender address verification from execution, we must first enforce user setting the From field in the msg
@yihuang yihuang requested a review from mmsqe September 22, 2023 04:34
yihuang
yihuang commented Sep 22, 2023
View reviewed changes
github-advanced-security[bot]
github-advanced-security bot found potential problems Sep 22, 2023
View reviewed changes
x/evm/keeper/msg_server.go
sdk.NewAttribute(sdk.AttributeKeySender, sender),
sdk.NewAttribute(types.AttributeKeyTxType, fmt.Sprintf("%d", tx.Type())),
sdk.NewAttribute(sdk.AttributeKeySender, types.HexAddress(msg.From)),
sdk.NewAttribute(types.AttributeKeyTxType, strconv.Itoa(int(tx.Type()))),

Check failure

Code scanning / gosec

Potential integer overflow by integer type conversion

Potential integer overflow by integer type conversion
mmsqe
mmsqe reviewed Sep 22, 2023
View reviewed changes
mmsqe
mmsqe previously approved these changes Sep 22, 2023
View reviewed changes
HuangYi added 2 commits September 22, 2023 15:50
@yihuang yihuang enabled auto-merge (squash) September 22, 2023 15:23
@yihuang yihuang requested a review from mmsqe September 22, 2023 15:25
mmsqe
mmsqe reviewed Sep 22, 2023
View reviewed changes
@yihuang yihuang merged commit 8e9320e into crypto-org-chain:develop Sep 22, 2023
@yihuang yihuang deleted the parallel-sender-recovery branch September 22, 2023 17:03
@yihuang yihuang mentioned this pull request Mar 8, 2024
Closed
@mmsqe mmsqe mentioned this pull request Jun 30, 2025
Merged
9 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

1 more reviewer

@mmsqe mmsqe mmsqe approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@yihuang @mmsqe