feat: check message context on timeout

reednaa · reednaa · commit 4d5c6cabfe94 · 2024-03-14T13:29:57.000+01:00
diff --git a/src/IncentivizedMessageEscrow.sol b/src/IncentivizedMessageEscrow.sol
@@ -972,6 +972,9 @@ abstract contract IncentivizedMessageEscrow is IIncentivizedMessageEscrow, Bytes
         // entirely untrusted. We do no verification on it. As a result, we shouldn't
         // trust any data within it. It is first when this message hits the source chain we can begin to verify data.
 
+        // Check that at least the context is set correctly.
+        if (message[CONTEXT_POS] != CTX_SOURCE_TO_DESTINATION) revert MessageHasInvalidContext();
+
         // Get the message identifier from the message.
         bytes32 messageIdentifier = bytes32(message[MESSAGE_IDENTIFIER_START:MESSAGE_IDENTIFIER_END]);
         // Read the status of the package at MessageIdentifier.
diff --git a/src/interfaces/IMessageEscrowErrors.sol b/src/interfaces/IMessageEscrowErrors.sol
@@ -21,4 +21,5 @@ interface IMessageEscrowErrors {
     error MessageAlreadyProcessed(); // 7b042609
     error DeadlineNotPassed(uint64 expected, uint64 actual); // 862c57f4
     error InvalidTimeoutPackage(bytes32 expected, bytes32 actual); // e020885d
+    error MessageHasInvalidContext(); // 3fcdbaba
 }

Original file line number	Diff line number	Diff line change
`@@ -21,4 +21,5 @@ interface IMessageEscrowErrors {`
`21`	`21`	`error MessageAlreadyProcessed(); // 7b042609`
`22`	`22`	`error DeadlineNotPassed(uint64 expected, uint64 actual); // 862c57f4`
`23`	`23`	`error InvalidTimeoutPackage(bytes32 expected, bytes32 actual); // e020885d`
	`24`	`+ error MessageHasInvalidContext(); // 3fcdbaba`
`24`	`25`	`}`