[entropy] audit - 2. lack of contract existence check (#1177)

Dev Kalra · web-flow · commit 941ee777f0b1 · 2023-12-13T16:42:21.000+05:30
* contract existence check

* better comment
diff --git a/target_chains/ethereum/contracts/contracts/executor/Executor.sol b/target_chains/ethereum/contracts/contracts/executor/Executor.sol
@@ -76,8 +76,16 @@ contract Executor {
             gi.executorAddress != address(this)
         ) revert ExecutorErrors.DeserializationError();
 
+        // Check if the gi.callAddress is a contract account.
+        uint len;
+        address callAddress = address(gi.callAddress);
+        assembly {
+            len := extcodesize(callAddress)
+        }
+        if (len == 0) revert ExecutorErrors.InvalidContractTarget();
+
         bool success;
-        (success, response) = address(gi.callAddress).call(gi.callData);
+        (success, response) = address(callAddress).call(gi.callData);
 
         // Check if the call was successful or not.
         if (!success) {
diff --git a/target_chains/ethereum/contracts/contracts/executor/ExecutorErrors.sol b/target_chains/ethereum/contracts/contracts/executor/ExecutorErrors.sol
@@ -14,4 +14,6 @@ library ExecutorErrors {
     error DeserializationError();
     // The message is not intended for this contract.
     error InvalidGovernanceTarget();
+    // The target address for the contract call is not a contract
+    error InvalidContractTarget();
 }
diff --git a/target_chains/ethereum/contracts/forge-test/Executor.t.sol b/target_chains/ethereum/contracts/forge-test/Executor.t.sol
@@ -344,6 +344,30 @@ contract ExecutorTest is Test, WormholeTestUtils {
         vm.expectRevert("call should revert");
         executor.execute(vaa);
     }
+
+    function testCallToEoaReverts() public {
+        bytes memory payload = abi.encodePacked(
+            uint32(0x5054474d),
+            PythGovernanceInstructions.GovernanceModule.EvmExecutor,
+            Executor.ExecutorAction.Execute,
+            CHAIN_ID,
+            address(executor),
+            address(100),
+            abi.encodeWithSelector(ICallable.foo.selector)
+        );
+
+        bytes memory vaa = generateVaa(
+            uint32(block.timestamp),
+            OWNER_CHAIN_ID,
+            OWNER_EMITTER,
+            1,
+            payload,
+            NUM_SIGNERS
+        );
+
+        vm.expectRevert(ExecutorErrors.InvalidContractTarget.selector);
+        executor.execute(vaa);
+    }
 }
 
 interface ICallable {

Original file line number	Diff line number	Diff line change
`@@ -14,4 +14,6 @@ library ExecutorErrors {`
`14`	`14`	`error DeserializationError();`
`15`	`15`	`// The message is not intended for this contract.`
`16`	`16`	`error InvalidGovernanceTarget();`
	`17`	`+ // The target address for the contract call is not a contract`
	`18`	`+ error InvalidContractTarget();`
`17`	`19`	`}`