CVF-1 #209

rya-sge · 2023-07-28T08:29:54Z

The check of the pause and frozen state was moved inside to fix the following CVF from the audit report, see #153

Here true is returned even if transfers are paused or the origin address is frozen.
Consider returning false in such a case

Nevertheless, this change creates
a) A cross-dependencies between modules (ValidationModule, PauseModule and EnforcementModule) which "break" the architecture
b) Make a requirement the ValidationModule (and so the RuleEngine) which was originally an optional module

Solution:
It makes sense to perform the different check inside the contract CMTAT_BASE since it is like a controller.

rya-sge · 2023-09-04T12:40:04Z

Finally the PR #222 moves only the ValidationModule inside a new directory called "Controllers" to avoid confusion.
it makes sense to perform all transfer control inside an only module.

rya-sge changed the title ~~CVF~~ CVF-1 Jul 28, 2023

rya-sge added the Security label Jul 28, 2023

rya-sge mentioned this issue Sep 4, 2023

CMTAT release v2.3.1 #210

Merged

10 tasks

rya-sge mentioned this issue Sep 11, 2023

Architecture refactoring #222

Merged

rya-sge self-assigned this Sep 11, 2023

rya-sge added the Next release The issue has been merged into dev and will be part of the next release label Sep 11, 2023

rya-sge closed this as completed Sep 25, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

CVF-1 #209

CVF-1 #209

rya-sge commented Jul 28, 2023 •

edited

Loading

rya-sge commented Sep 4, 2023 •

edited

Loading

CVF-1 #209

CVF-1 #209

Comments

rya-sge commented Jul 28, 2023 • edited Loading

rya-sge commented Sep 4, 2023 • edited Loading

rya-sge commented Jul 28, 2023 •

edited

Loading

rya-sge commented Sep 4, 2023 •

edited

Loading