Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

ICS27: Interchain Accounts allows packets to be received on controller side #603

Closed
colin-axner opened this issue Sep 16, 2021 · 2 comments · Fixed by #845
Closed

ICS27: Interchain Accounts allows packets to be received on controller side #603

colin-axner opened this issue Sep 16, 2021 · 2 comments · Fixed by #845
Assignees
@crodriguezvega
Labels
app Application layer.

Comments

@colin-axner
Copy link
Contributor

Giving the spec a quick glance, I don't see a check enforcing that the receiving port address is the host chain port. This means a malicious ics27 module (host chain) could trick the controller chain into accidentally trying to execute a transaction. I'm not sure if it is exploitable in any way, but there should probably be a check enforcing that controller chain ports cannot receive packets
@mpoke mpoke changed the title Interchain Accounts allows packets to be received on controller side ICS27: Interchain Accounts allows packets to be received on controller side Mar 17, 2022
@mpoke mpoke added the app Application layer. label Mar 17, 2022
@crodriguezvega
Copy link
Contributor

crodriguezvega commented Aug 1, 2022
edited
Loading

there should probably be a check enforcing that controller chain ports cannot receive packets

@colin-axner, is then the action for this issue to update the spec to include the same kind of logic that ibc-go has on the OnRecvPacket callback of the controller chain?

@colin-axner
Copy link
Contributor Author

Yes I think so. Will defer to @AdityaSripal on how this should be specified/indicated in the spec

@crodriguezvega crodriguezvega moved this to Todo in IBC specs Aug 16, 2022
@crodriguezvega crodriguezvega self-assigned this Oct 3, 2022
@crodriguezvega crodriguezvega mentioned this issue Oct 3, 2022
Merged
@crodriguezvega crodriguezvega linked a pull request Oct 3, 2022 that will close this issue
ICS27: add explanation about expected behavior for controller modules onRecvPacket callback #845
Merged
@crodriguezvega crodriguezvega moved this from Todo to In review in IBC specs Oct 3, 2022
Repository owner moved this from In review to Done in IBC specs Oct 12, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@crodriguezvega crodriguezvega

Labels
app Application layer.
Projects
IBC-GO Eureka
Status: Backlog
IBC specs
Archived in project
Milestone
No milestone
3 participants
@crodriguezvega @mpoke @colin-axner