You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
make sure that all new fields on TxBody either have a direct counterpart in StdTx or cause transactions to fail and make sure that SIGN_MODE_LEGACY_AMINO_JSON handles this properly
If the above are not done, a malicious attacker can either add:
random unknown, non-critical fields to protobuf tx's bloating transactions, or
set fields on TxBody that weren't present in the amino JSON SignDoc
The text was updated successfully, but these errors were encountered:
SIGN_MODE_DIRECT
addresses malleability by signing raw bytes. Amino JSON signing requires extra care to deal with malleability.In order to prevent exploits, we need to:
TxBody
either have a direct counterpart inStdTx
or cause transactions to fail and make sure thatSIGN_MODE_LEGACY_AMINO_JSON
handles this properlyIf the above are not done, a malicious attacker can either add:
TxBody
that weren't present in the amino JSONSignDoc
The text was updated successfully, but these errors were encountered: