Ethereum Team Considers New Bug In Constantinople Not Dangerous
Leading developers of the Ethereum network believe that a bug that has recently been found in the Constantinople code does not pose a threat to the system’s security. This was stated by the Ethereum experts at a videoconference.
The upgrade called Constantinople is scheduled for the end of February, but two weeks before specialists detected its another vulnerability. It affects a number of smart contracts that can self-destruct. In particular, the command Create2 can replace the liquidated contract and change its rules, which may lead to losing money.
However, most developers, including the network co-founder Vitalik Buterin, do not see this as a serious threat. According to Buterin, the team should think about a new option to destruct contracts if self-destruction will become impossible. However, this is not something that experts will work on in the near future, he said.
Finding a solution will be urgent after sharding on the network will connect to the specific features of the Ethereum virtual machine, Vitalik Buterin noted.
Also, Jason Carver, the company’s developer, previously explained that self-destruction of smart contracts carries no risks in the current version of the protocol, but after activating Constantinople, this function will become vulnerable and can be used to steal tokens. As one of the technological solutions, it is proposed to set additional protection against replay in the Create2 command.
Experts hope that fixing the errors of Constantinople will not affect the launch date of the hard fork that is planned on the block number 7 080 000 and is expected to ease the transition of the platform to the Proof-of-Stake algorithm.