You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This function was introduced ~1,5 year ago, and gives too many false positives and false negatives (ex: require(msg.sender == tx.origin), #399). We need to improve it. some ideas:
Use all_slithir_operations, and check for direct comparison with msg.sender
Find a way to capture correctly msg.sender that are used in a call/modifier. The data dependency can't be used here, as it relies on is_protected. An alternative would be to compute first the data dependency without the protected information, and recompute it a second time. This would give better results but will require some refactoring.
We should make it a property and memoize it
The text was updated successfully, but these errors were encountered:
function.is_protected
is heavily used by the inbuilt-analyses and many detectors:slither/slither/core/declarations/function.py
Lines 1133 to 1149 in 1b15a40
This function was introduced ~1,5 year ago, and gives too many false positives and false negatives (ex:
require(msg.sender == tx.origin)
, #399). We need to improve it. some ideas:msg.sender
that are used in a call/modifier. The data dependency can't be used here, as it relies onis_protected
. An alternative would be to compute first the data dependency without the protected information, and recompute it a second time. This would give better results but will require some refactoring.The text was updated successfully, but these errors were encountered: