search

omni-network / omni

Monorepo for Omni node, contracts and other related tools
https://omni.network
GNU General Public License v3.0
93 stars 54 forks source link

fix(octane/evmengine): prevent json data injection #2541

Closed corverroos closed 3 days ago

corverroos commented 3 days ago

Mitigates malicious proposers including unknown fields in execution payload JSON.

Maintain backwards compatibility with previous versions of geth that include "deposits":null.

issue: #2533

corverroos commented 3 days ago

This doesn't actually work since geth types do custom unmarshalling which bypass DisallowUnknownFields