feat: [v0.8-develop, experimental]: remove plugin call restriction [3/N] #60
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
adamegyed
changed the title
jaypaik
approved these changes
May 28, 2024
Collaborator
jaypaik
left a comment
jaypaik
left a comment
There was a problem hiding this comment.
I generally like this direction. Could you leave a TODO somewhere appropriate to track validation-execution association?
Contributor
|
Removing the installation of execution functions on plugins is an interesting idea. Would it be accurate to say this approach essentially recommends native exec functions such as |
huaweigu
approved these changes
May 29, 2024
Contributor
Author
|
Yes, I think that's accurate @huaweigu. It simplifies the enforcement, but we may need to provide ways to lock it down more in the future. It could be necessary for cases when a plugin wants to add protections to specific functions, like transferring ownership. |
adamegyed
force-pushed
the
adam/sig-validator-interface
branch
from
c25af9c to
7f62cb9
Compare
adamegyed
force-pushed
the
adam/remove-plugin-call-restriction
branch
from
c179b20 to
f2ebe06
Compare
adamegyed
force-pushed
the
adam/sig-validator-interface
branch
from
7f62cb9 to
3d38b61
Compare
adamegyed
force-pushed
the
adam/remove-plugin-call-restriction
branch
from
f2ebe06 to
34ccb35
Compare
adamegyed
force-pushed
the
adam/remove-plugin-call-restriction
branch
from
34ccb35 to
7d9b2f1
Compare
adamegyed
added a commit
that referenced
this pull request
Jul 26, 2024
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Motivation
#52 identified an issue, where if a validation plugin defined any execution functions, it could not be installed multiple times. This is a goal we're working towards with composable validation, so we need a way to address the issue.
A simple candidate change to address this is to remove the call restriction on plugins, and to handle the logic of guarded functions like
transferOwnershipthrough theexecute/executeBatchworkflows.Solution
Remove the restriction on
_execto only call non-plugin contracts.Remove the installation of execution functions
owner()andtransferOwnership(...)from SingleOwnerPlugin. We should eventually provide this as a non-mandatory option during install, but that is not addressed here.Future work
This PR does not address the security ramifications of this - it breaks the segmentation of validation functions provided by the 1:1 association of selectors and validation. We will need to implement some ability to filter calls based on the type of validation used in the future.