Merge pull request #188 from jdetychey/patch-3

fix for short address attack

Merge pull request #188 from jdetychey/patch-3
fix for short address attack
22018fd3 · Manuel Aráoz · GitHub · d1f63f5c · 5d75264f · 22018fd3
Commit 22018fd3 authored Apr 11, 2017 by Manuel Aráoz Committed by GitHub Apr 11, 2017
Hide whitespace changes
Inline Side-by-side

Showing with 9 additions and 1 deletions

BasicToken.sol contracts/token/BasicToken.sol +9 -1

No files found.
--- a/contracts/token/BasicToken.sol
+++ b/contracts/token/BasicToken.sol
@@ -13,7 +13,15 @@ contract BasicToken is ERC20Basic, SafeMath {
  mapping(address => uint) balances;
-  function transfer(address _to, uint _value) {
+/*
+ * Fix for the ERC20 short address attack  
+ */
+  modifier onlyPayloadSize(uint size) {
+     assert(msg.data.length >= size + 4);
+     _;
+  }
+  function transfer(address _to, uint _value) onlyPayloadSize(2 * 32) {
    balances[msg.sender] = safeSub(balances[msg.sender], _value);
    balances[_to] = safeAdd(balances[_to], _value);
    Transfer(msg.sender, _to, _value);