Optimism Patches Factors With Testnet Fraud Proofs After Alert From Offchain Labs
OP Labs, the entity in the encourage of the Ethereum layer 2 community Optimism, has patched two vulnerabilities with the fraud proof system deployed on the testnet.
The fix modified into as soon as disclosed by Offchain Labs, the developers of Arbitrum, but any other popular layer 2 community that is broadly regarded as to be a competitor to Optimism.
Offchain Labs co-founder Ed Felton acknowledged in a Friday blog put up that the physique of workers had disclosed the vulnerabilities to OP Labs on March 22, but held off on making them known to the wider community till the safety flaws had been patched unhurried on April 25.
On the present time, we disclosed two severe vulnerabilities in the fair nowadays released OP Stack fraud proofs.
We coordinated carefully with the OP Labs physique of workers on this disclosure. We’re all on physique of workers Ethereum, and glad to lend sources to develop Ethereum safer for everyone.https://t.co/vC4SWBdTuZ
— Offchain Labs (@OffchainLabs) April 26, 2024
“The vulnerabilities allowed a malicious birthday celebration to force the OP Stack fraud proof mechanism to accept a fraudulent chain history, or to forestall the OP Stack fraud proof mechanism from accepting a factual chain history,” Felton acknowledged.
“The considerations stemmed from flaws in how the OP fraud proof construct handles timers.”
Felton eminent that OP Labs has since made some changes to their timer-going thru code that resolves the aptitude exploits that can personal taken position as a outcomes of them. It’s miles fee noting that these points had been seen on the testnet, which acts as a form of sandbox environment for developers to ascertain new design, and importantly, fix serious points love this one before the updates are rolled out on the mainnet.
In an blog put up on Friday, OP Labs shared a though-provoking thanks to the Offchain Labs physique of workers for reporting the 2 points with its FaultDisputeGame contract.
“Although this worm would were detected and caught by the protection nets in position for the most fresh fault proof system, it would per chance personal compelled the Optimism Security Council to quickly close withdrawals whereas the worm modified into as soon as being fastened, possible creating headaches for users of the OP Stack,” acknowledged the OP Labs physique of workers.
OP Labs started a Sherlock audit contest final month for its proposed fault proof system and reported that there were no serious vulnerabilities that is possible to be in a position to avoid the protection mechanisms in position.
Source credit : unchainedcrypto.com