Skip to content

fix(router): adds caller verification when the swap callback #1005

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 5 commits into from
Dec 1, 2025
Merged

fix(router): adds caller verification when the swap callback #1005

merged 5 commits into from
Dec 1, 2025
+239 −0

Conversation

@jinoosss
Copy link
Member

@jinoosss jinoosss commented Nov 26, 2025

Descriptions

This PR adds caller verification to the SwapCallback function in the router v1 contract to enhance security and prevent unauthorized callback invocations.

Problem

The SwapCallback function, which handles token transfers during pool swaps, did not verify that it was being called from the authorized router v1 contract. This could potentially allow malicious actors to invoke the callback directly and manipulate the swap flow.

Solution

Added caller verification to ensure that only the router v1 contract can invoke the swap callback:

  1. New Assertion Function: Added assertIsRouterV1() in assert.gno to verify the caller's address matches the router v1 contract address
  2. Router V1 Address Constant: Added routerV1Addr constant in consts.gno to store the router v1 package address
  3. Caller Verification in SwapCallback:
    • Added halt state check using halt.AssertIsNotHaltedRouter()
    • Retrieve the previous realm's address using runtime.PreviousRealm().Address()
    • Verify the caller is router v1 before proceeding with the callback logic

notJoon
notJoon reviewed Nov 26, 2025
View reviewed changes
notJoon
notJoon reviewed Nov 26, 2025
View reviewed changes
Copy link
Member

@notJoon notJoon left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

although I left a comment, but the changes seems good.

dongwon8247
dongwon8247 reviewed Nov 28, 2025
View reviewed changes
Copy link
Member

@dongwon8247 dongwon8247 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

can you also confirm PreviousRealm(Address) == routerV1Addr?

@sonarqubecloud
Copy link

sonarqubecloud bot commented Nov 28, 2025

Quality Gate Passed Quality Gate passed

Issues
1 New issue
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

@jinoosss jinoosss merged commit 11097d6 into main Dec 1, 2025
161 of 166 checks passed
@jinoosss jinoosss deleted the fix-router-adds-caller-verification-when-the-swap-callback branch December 1, 2025 02:02
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@dongwon8247 dongwon8247 dongwon8247 left review comments

@notJoon notJoon notJoon approved these changes

@junghoon-vans junghoon-vans Awaiting requested review from junghoon-vans

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@jinoosss @notJoon @dongwon8247