Skip to content

Signatures that depends only on msg.sender are nonce independent. #187

New issue
New issue
Open
Open
Signatures that depends only on msg.sender are nonce independent.#187
Labels
documentationfutureFeatures for next major contract version
@rmeissner

Description

@rmeissner
rmeissner
opened on Apr 1, 2020

Essentially when the msg.sender is an owner and the Safe has a threshold one, the nonce is never checked. This is because in this case the check on contract level only checks if the msg.sender is an owner, never validating the hash with the nonce.

What can happen in this case?

If we have multiple owners and threshold 1 all could send transactions at the same time, and they would all be executed.

Activity

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Metadata

Assignees

No one assigned

    Labels

    documentationfutureFeatures for next major contract version

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions