GitBross Home Explore Help
Register Sign In
sol_Bo8des9o
/
openzeppelin-contracts
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

some security fixes

Manuel Araoz 9 years ago
parent
c543282f40
commit
30c0600ac1
3 changed files with 6 additions and 3 deletions
Unified View Show Diff Stats
  1. 4 1
      contracts/BadPushPayments.sol
  2. 1 1
      contracts/GoodPullPayments.sol
  3. 1 1
      contracts/PullPaymentCapable.sol

+ 4 - 1
contracts/BadPushPayments.sol
View File 

@@ -9,7 +9,10 @@ contract BadPushPayments {
 
 		if (msg.value < highestBid) throw;
 
 		if (msg.value < highestBid) throw;
 
 
 
 		if (highestBidder != 0) {
 
 		if (highestBidder != 0) {
 
-			highestBidder.send(highestBid);
 
+      // return bid to previous winner
 
+			if (!highestBidder.send(highestBid)) {
 
+        throw;
 
+      }
 
 		}
 
 		}
 
 
 
 	  highestBidder = msg.sender;
 
 	  highestBidder = msg.sender;

+ 1 - 1
contracts/GoodPullPayments.sol
View File 

@@ -14,7 +14,7 @@ contract GoodPullPayments {
 
     highestBid = msg.value;
 
     highestBid = msg.value;
 
   }
 
   }
 
 
 
-  function withdrawRefund() external {
 
+  function withdrawBid() external {
 
     uint refund = refunds[msg.sender];
 
     uint refund = refunds[msg.sender];
 
     refunds[msg.sender] = 0;
 
     refunds[msg.sender] = 0;
 
     if (!msg.sender.send(refund)) {
 
     if (!msg.sender.send(refund)) {

+ 1 - 1
contracts/PullPaymentCapable.sol
View File 

@@ -1,7 +1,7 @@
 
 contract PullPaymentCapable {
 
 contract PullPaymentCapable {
 
   mapping(address => uint) refunds;
 
   mapping(address => uint) refunds;
 
 
 
-  function asyncSend(address dest, uint amount) {
 
+  function asyncSend(address dest, uint amount) internal {
 
     refunds[dest] += amount;
 
     refunds[dest] += amount;
 
   }
 
   }