Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

Incorrect code in check authorized asset for withdraw_to_account in withdraw_permission_claim_evaluator? #942

Closed
btsabc opened this issue May 22, 2018 · 2 comments
Closed

Incorrect code in check authorized asset for withdraw_to_account in withdraw_permission_claim_evaluator? #942

btsabc opened this issue May 22, 2018 · 2 comments
Labels
bug hardfork
Milestone
201806 - Consensu...

Comments

@btsabc
Copy link

btsabc commented May 22, 2018
edited
Loading

bitshares-core/libraries/chain/withdraw_permission_evaluator.cpp

Lines 77 to 80 in dc7eb35

const account_object& from = op.withdraw_to_account(d);
const account_object& to = permit.authorized_account(d);
FC_ASSERT( is_authorized_asset( d, to, _asset ) );
FC_ASSERT( is_authorized_asset( d, from, _asset ) );

Line 77 should be:
const account_object& from = op.withdraw_from_account(d);
@abitmore
Copy link
Member

Thanks for the report.

This issue effectively will skip white-list check for the real from account. Seems easy to fix. Let's see if we can fix it in this release.

@abitmore abitmore added the bug label May 22, 2018
@abitmore abitmore self-assigned this May 22, 2018
abitmore added a commit that referenced this issue May 22, 2018
@abitmore
Fix withdraw_permission_claim 'from' check #942
6601bd1
@abitmore abitmore mentioned this issue May 22, 2018
Merged
1 task
abitmore added a commit that referenced this issue May 23, 2018
@abitmore
Tests withdraw_permission_claim 'from' check #942
bd15e7f
@abitmore abitmore removed their assignment May 23, 2018
abitmore added a commit that referenced this issue May 23, 2018
@abitmore
Merge pull request #951 from bitshares/942-fix-withdraw-claim
e54f2b6 
Fix withdraw_permission_claim 'from' check #942
@abitmore
Copy link
Member

Fixed with #951.

# for free to join this conversation on GitHub. Already have an account? # to comment
Assignees
No one assigned
Labels
bug hardfork
Projects
None yet
Milestone
201806 - Consensus Changing Release
Development

No branches or pull requests
2 participants
@abitmore @btsabc