From 9a0923e6edce90e8b7b06376c685e5834a3ca335 Mon Sep 17 00:00:00 2001
From: Norton Andreev <norton@nortonandreev.com>
Date: Tue, 3 Dec 2024 12:26:34 +0200
Subject: [PATCH] web-wallet: Add validation for self-referential transactions

Resolves #3099
---
 web-wallet/CHANGELOG.md                       |   2 +
 .../src/lib/components/Send/Send.svelte       |  37 ++-
 .../src/lib/components/__tests__/Send.spec.js |  54 +++-
 .../__tests__/__snapshots__/Send.spec.js.snap | 296 ++++++++++++++++++
 .../string/__tests__/validateAddress.spec.js  |  40 ++-
 .../src/lib/dusk/string/validateAddress.js    |  18 +-
 .../routes/(app)/dashboard/send/+page.svelte  |  14 +-
 .../__tests__/__snapshots__/page.spec.js.snap |   1 +
 8 files changed, 422 insertions(+), 40 deletions(-)

diff --git a/web-wallet/CHANGELOG.md b/web-wallet/CHANGELOG.md
index 0a8866c477..7c78ca0f7c 100644
--- a/web-wallet/CHANGELOG.md
+++ b/web-wallet/CHANGELOG.md
@@ -11,6 +11,7 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 
 - Add "Support" section under Settings [#3071]
 - Add user feedback for "Send" flow validation [#3098]
+- Add validation for self-referential transactions [#3099]
 
 ### Changed
 
@@ -407,6 +408,7 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 [#3076]: https://github.com/dusk-network/rusk/issues/3076
 [#3081]: https://github.com/dusk-network/rusk/issues/3081
 [#3098]: https://github.com/dusk-network/rusk/issues/3098
+[#3099]: https://github.com/dusk-network/rusk/issues/3099
 
 <!-- VERSIONS -->
 
diff --git a/web-wallet/src/lib/components/Send/Send.svelte b/web-wallet/src/lib/components/Send/Send.svelte
index c539e9a258..5586698cb0 100644
--- a/web-wallet/src/lib/components/Send/Send.svelte
+++ b/web-wallet/src/lib/components/Send/Send.svelte
@@ -54,11 +54,17 @@
   /** @type {boolean} */
   export let enableMoonlightTransactions = false;
 
+  /** @type {string} */
+  export let shieldedAddress;
+
+  /** @type {string} */
+  export let publicAddress;
+
   /** @type {number} */
   let sendAmount = 1;
 
   /** @type {string} */
-  let address = "";
+  let sendToAddress = "";
 
   /** @type {import("qr-scanner").default} */
   let scanner;
@@ -158,7 +164,12 @@
     isBalanceSufficientForGas
   );
 
-  $: addressValidationResult = validateAddress(address);
+  $: addressValidationResult = validateAddress(
+    sendToAddress,
+    shieldedAddress,
+    publicAddress
+  );
+
   $: isMoonlightTransaction = addressValidationResult.type === "account";
 
   $: if (addressValidationResult.type) {
@@ -204,7 +215,7 @@
           required
           className={`operation__send-address ${!addressValidationResult.isValid ? "operation__send-address--invalid" : ""}`}
           type="multiline"
-          bind:value={address}
+          bind:value={sendToAddress}
         />
         {#if addressValidationResult.type === "account"}
           <Banner
@@ -226,9 +237,23 @@
           bind:this={scanQrComponent}
           bind:scanner
           on:scan={(event) => {
-            address = event.detail;
+            sendToAddress = event.detail;
           }}
         />
+
+        {#if addressValidationResult.isSelfReferential}
+          <Banner
+            variant="warning"
+            title="Self-referential transaction detected"
+          >
+            <p>
+              You are attempting to initiate a transaction with your own wallet
+              address as both the sender and the receiver. Self-referential
+              transactions may not have meaningful purpose and will incur gas
+              fees.
+            </p>
+          </Banner>
+        {/if}
       </div>
     </WizardStep>
     <!-- Amount Step -->
@@ -356,7 +381,7 @@
             <span>To:</span>
           </dt>
           <dd class="operation__review-address">
-            <span>{address}</span>
+            <span>{sendToAddress}</span>
           </dd>
         </dl>
 
@@ -367,7 +392,7 @@
     <WizardStep step={3} {key} showNavigation={false}>
       <OperationResult
         errorMessage="Transaction failed"
-        operation={execute(address, sendAmountInLux, gasPrice, gasLimit)}
+        operation={execute(sendToAddress, sendAmountInLux, gasPrice, gasLimit)}
         pendingMessage="Processing transaction"
         successMessage="Transaction created"
       >
diff --git a/web-wallet/src/lib/components/__tests__/Send.spec.js b/web-wallet/src/lib/components/__tests__/Send.spec.js
index 7ec888d276..4d351a86bd 100644
--- a/web-wallet/src/lib/components/__tests__/Send.spec.js
+++ b/web-wallet/src/lib/components/__tests__/Send.spec.js
@@ -23,6 +23,10 @@ vi.mock("$lib/dusk/string", async (importOriginal) => {
 describe("Send", () => {
   const formatter = createCurrencyFormatter("en", "DUSK", 9);
   const lastTxId = "some-id";
+  const publicAddress =
+    "zTsZq814KfWUAQujzjBchbMEvqA1FiKBUakMCtAc2zCa74h9YVz4a2roYwS7LHDHeBwS1aap4f3GYhQBrxroYgsBcE4FJdkUbvpSD5LVXY6JRXNgMXgk6ckTPJUFKoHybff";
+  const shieldedAddress =
+    "47jNTgAhzn9KCKF3msCfvKg3k1P1QpPCLZ3HG3AoNp87sQ5WNS3QyjckYHWeuXqW7uvLmbKgejpP8Xkcip89vnMM";
   const baseProps = {
     availableBalance: 1_000_000_000_000n,
     execute: vi.fn().mockResolvedValue(lastTxId),
@@ -36,6 +40,8 @@ describe("Send", () => {
       gasLimit: 20000000n,
       gasPrice: 1n,
     },
+    publicAddress,
+    shieldedAddress,
     statuses: [
       {
         label: "Spendable",
@@ -47,12 +53,6 @@ describe("Send", () => {
   const invalidAddress =
     "aB5rL7yC2zK9eV3xH1gQ6fP4jD8sM0iU2oX7wG9nZ8lT3hU4jP5mK8nS6qJ3wF4aA9bB2cC5dD8eE7";
 
-  const address =
-    "47jNTgAhzn9KCKF3msCfvKg3k1P1QpPCLZ3HG3AoNp87sQ5WNS3QyjckYHWeuXqW7uvLmbKgejpP8Xkcip89vnMM";
-
-  const account =
-    "zTsZq814KfWUAQujzjBchbMEvqA1FiKBUakMCtAc2zCa74h9YVz4a2roYwS7LHDHeBwS1aap4f3GYhQBrxroYgsBcE4FJdkUbvpSD5LVXY6JRXNgMXgk6ckTPJUFKoHybff";
-
   afterEach(() => {
     cleanup();
     baseProps.execute.mockClear();
@@ -89,13 +89,27 @@ describe("Send", () => {
 
     it("should display a warning if the address input is a public account", async () => {
       const { container, getByRole } = render(Send, baseProps);
+      const sendToAddress =
+        "aTsZq814KfWUAQujzjBchbMEvqA1FiKBUakMCtAc2zCa74h9YVz4a2roYwS7LHDHeBwS1aap4f3GYhQBrxroYgsBcE5FJdkUbvpSD5LVXY6JRXNgMXgk6ckTPJUFKoHybff";
       const addressInput = getByRole("textbox");
 
       await fireEvent.input(addressInput, {
-        target: { value: account },
+        target: { value: sendToAddress },
       });
 
-      expect(addressInput).toHaveValue(account);
+      expect(addressInput).toHaveValue(sendToAddress);
+      expect(container.firstChild).toMatchSnapshot();
+    });
+
+    it("should display a warning if the address input is self-referential", async () => {
+      const { container, getByRole } = render(Send, baseProps);
+      const addressInput = getByRole("textbox");
+
+      await fireEvent.input(addressInput, {
+        target: { value: publicAddress },
+      });
+
+      expect(addressInput).toHaveValue(publicAddress);
       expect(container.firstChild).toMatchSnapshot();
     });
   });
@@ -214,7 +228,9 @@ describe("Send", () => {
       const { container, getByRole } = render(Send, baseProps);
       const addressInput = getByRole("textbox");
 
-      await fireEvent.input(addressInput, { target: { value: address } });
+      await fireEvent.input(addressInput, {
+        target: { value: shieldedAddress },
+      });
       await fireEvent.click(getByRole("button", { name: "Next" }));
 
       const amountInput = getByRole("spinbutton");
@@ -232,7 +248,7 @@ describe("Send", () => {
       );
 
       expect(value.textContent).toBe(baseProps.formatter(amount));
-      expect(key.textContent).toBe(address);
+      expect(key.textContent).toBe(shieldedAddress);
       expect(container.firstChild).toMatchSnapshot();
     });
   });
@@ -251,7 +267,9 @@ describe("Send", () => {
       const { getByRole, getByText } = render(Send, baseProps);
       const addressInput = getByRole("textbox");
 
-      await fireEvent.input(addressInput, { target: { value: address } });
+      await fireEvent.input(addressInput, {
+        target: { value: shieldedAddress },
+      });
       await fireEvent.click(getByRole("button", { name: "Next" }));
 
       const amountInput = getByRole("spinbutton");
@@ -264,7 +282,7 @@ describe("Send", () => {
 
       expect(baseProps.execute).toHaveBeenCalledTimes(1);
       expect(baseProps.execute).toHaveBeenCalledWith(
-        address,
+        shieldedAddress,
         duskToLux(amount),
         baseProps.gasSettings.gasPrice,
         baseProps.gasSettings.gasLimit
@@ -285,7 +303,9 @@ describe("Send", () => {
       const { getByRole, getByText } = render(Send, baseProps);
       const addressInput = getByRole("textbox");
 
-      await fireEvent.input(addressInput, { target: { value: address } });
+      await fireEvent.input(addressInput, {
+        target: { value: shieldedAddress },
+      });
       await fireEvent.click(getByRole("button", { name: "Next" }));
 
       const amountInput = getByRole("spinbutton");
@@ -297,7 +317,7 @@ describe("Send", () => {
 
       expect(baseProps.execute).toHaveBeenCalledTimes(1);
       expect(baseProps.execute).toHaveBeenCalledWith(
-        address,
+        shieldedAddress,
         duskToLux(amount),
         baseProps.gasSettings.gasPrice,
         baseProps.gasSettings.gasLimit
@@ -312,7 +332,9 @@ describe("Send", () => {
       const { getByRole, getByText } = render(Send, baseProps);
       const addressInput = getByRole("textbox");
 
-      await fireEvent.input(addressInput, { target: { value: address } });
+      await fireEvent.input(addressInput, {
+        target: { value: shieldedAddress },
+      });
       await fireEvent.click(getByRole("button", { name: "Next" }));
 
       const amountInput = getByRole("spinbutton");
@@ -324,7 +346,7 @@ describe("Send", () => {
 
       expect(baseProps.execute).toHaveBeenCalledTimes(1);
       expect(baseProps.execute).toHaveBeenCalledWith(
-        address,
+        shieldedAddress,
         duskToLux(amount),
         baseProps.gasSettings.gasPrice,
         baseProps.gasSettings.gasLimit
diff --git a/web-wallet/src/lib/components/__tests__/__snapshots__/Send.spec.js.snap b/web-wallet/src/lib/components/__tests__/__snapshots__/Send.spec.js.snap
index 35ec1de9cd..dcf2c1364b 100644
--- a/web-wallet/src/lib/components/__tests__/__snapshots__/Send.spec.js.snap
+++ b/web-wallet/src/lib/components/__tests__/__snapshots__/Send.spec.js.snap
@@ -198,6 +198,301 @@ exports[`Send > Address step > should display a warning if the address input is
           </span>
         </button>
       </div>
+       
+    </div>
+     
+    <div
+      class="dusk-wizard__step-navigation"
+    >
+      <a
+        aria-disabled="false"
+        class="dusk-anchor dusk-anchor--on-surface dusk-anchor-button dusk-anchor-button--variant--tertiary dusk-anchor-button--size--default dusk-icon-button--labeled"
+        href="/some-base-path/dashboard"
+      >
+        <svg
+          class="dusk-icon dusk-icon--size--default dusk-anchor-button__icon"
+          role="graphics-symbol"
+          viewBox="0 0 24 24"
+        >
+          <path
+            d="M20,11V13H8L13.5,18.5L12.08,19.92L4.16,12L12.08,4.08L13.5,5.5L8,11H20Z"
+          />
+        </svg>
+        
+         
+        <span
+          class="dusk-anchor-button__text"
+        >
+          Back
+        </span>
+        
+        
+      </a>
+      
+       
+      <button
+        class="dusk-button dusk-button--type--button dusk-button--variant--tertiary dusk-button--size--default dusk-icon-button--labeled"
+        disabled=""
+        type="button"
+      >
+        <span
+          class="dusk-button__text"
+        >
+          Next
+        </span>
+         
+        <svg
+          class="dusk-icon dusk-icon--size--default dusk-button__icon"
+          role="graphics-symbol"
+          viewBox="0 0 24 24"
+        >
+          <path
+            d="M4,11V13H16L10.5,18.5L11.92,19.92L19.84,12L11.92,4.08L10.5,5.5L16,11H4Z"
+          />
+        </svg>
+        
+      </button>
+    </div>
+    
+    
+     
+    
+     
+    
+     
+    
+  </div>
+</div>
+`;
+
+exports[`Send > Address step > should display a warning if the address input is self-referential 1`] = `
+<div
+  class="operation svelte-npcavd"
+>
+  <div
+    class="dusk-wizard"
+  >
+    <div
+      slot="stepper"
+    >
+      <div
+        class="dusk-stepper dusk-stepper--variant--primary"
+        style="--columns: 4; --progress-width: 0%;"
+      >
+        <span
+          aria-current="step"
+          aria-labelledby="step-some-generated-id"
+          class="dusk-stepper__step dusk-stepper__step--processed"
+        >
+          1
+        </span>
+         
+        <span
+          class="dusk-stepper__step-label"
+          id="step-some-generated-id"
+        >
+          Address
+           
+        </span>
+        <span
+          aria-labelledby="step-some-generated-id"
+          class="dusk-stepper__step"
+        >
+          2
+        </span>
+         
+        <span
+          class="dusk-stepper__step-label dusk-stepper__step-label--invisible"
+          id="step-some-generated-id"
+        >
+          Amount
+           
+        </span>
+        <span
+          aria-labelledby="step-some-generated-id"
+          class="dusk-stepper__step"
+        >
+          3
+        </span>
+         
+        <span
+          class="dusk-stepper__step-label dusk-stepper__step-label--invisible"
+          id="step-some-generated-id"
+        >
+          Review
+           
+        </span>
+        <span
+          aria-labelledby="step-some-generated-id"
+          class="dusk-stepper__step"
+        >
+          4
+        </span>
+         
+        <span
+          class="dusk-stepper__step-label dusk-stepper__step-label--invisible"
+          id="step-some-generated-id"
+        >
+          Done
+           
+        </span>
+        
+      </div>
+      
+    </div>
+     
+     
+     
+    <div
+      class="operation__send svelte-npcavd"
+    >
+      <div
+        class="contract-statuses svelte-1up3579"
+      >
+        <dl
+          class="contract-statuses__list svelte-1up3579"
+        >
+          <dt
+            class="contract-statuses__label svelte-1up3579"
+          >
+            Spendable
+             
+          </dt>
+          <dd
+            class="contract-statuses__value svelte-1up3579"
+          >
+            <span>
+              1,000.000000000
+            </span>
+             
+            <svg
+              class="dusk-icon dusk-icon--size--default contract-statuses__icon"
+              data-tooltip-id="main-tooltip"
+              data-tooltip-text="DUSK"
+              role="graphics-symbol"
+              viewBox="0 0 24 24"
+            >
+              <path
+                d="M12.335 0.005a12.186 12.186 0 0 0 -2.58 0.204C4.2 1.259 0 6.14 0 11.999 0 17.859 4.203 22.74 9.759 23.79c0.726 0.138 1.476 0.21 2.241 0.21 6.789 0 12.261 -5.64 11.991 -12.49C23.741 5.249 18.599 0.173 12.335 0.005Zm0.207 21.58c-0.204 0.012 -0.336 -0.222 -0.21 -0.384 1.974 -2.541 3.153 -5.733 3.153 -9.202 0 -3.468 -1.176 -6.663 -3.153 -9.202 -0.126 -0.162 0.003 -0.396 0.207 -0.384 5.052 0.282 9.06 4.465 9.06 9.586 0 5.121 -4.005 9.304 -9.057 9.586Z"
+              />
+            </svg>
+            
+             
+          </dd>
+        </dl>
+         
+      </div>
+       
+      <div
+        class="operation__address-wrapper svelte-npcavd"
+      >
+        <p>
+          Address:
+        </p>
+         
+        <button
+          class="dusk-button dusk-button--type--button dusk-button--variant--primary dusk-button--size--small"
+          disabled=""
+          type="button"
+        >
+          <span
+            class="dusk-button__text"
+          >
+            SCAN QR
+          </span>
+        </button>
+      </div>
+       
+      <textarea
+        class="dusk-textbox dusk-textbox-multiline operation__send-address "
+        required=""
+      />
+      
+       
+      <div
+        class="banner banner--warning"
+      >
+        <svg
+          class="dusk-icon dusk-icon--size--large banner__icon banner__icon--warning"
+          role="graphics-symbol"
+          viewBox="0 0 24 24"
+        >
+          <path
+            d="M12,2L1,21H23M12,6L19.53,19H4.47M11,10V14H13V10M11,16V18H13V16"
+          />
+        </svg>
+        
+         
+        <div>
+          <strong
+            class="banner__title"
+          >
+            Public account detected
+          </strong>
+           
+          <p>
+            Public transactions are currently unavailable.
+          </p>
+          
+        </div>
+      </div>
+       
+      <div
+        class="scan svelte-1uf7z44"
+      >
+        <video
+          class="svelte-1uf7z44"
+        >
+          <track
+            kind="captions"
+          />
+        </video>
+         
+        <div
+          class="scan__highlight svelte-1uf7z44"
+        />
+         
+        <button
+          class="dusk-button dusk-button--type--button dusk-button--variant--primary dusk-button--size--small"
+          type="button"
+        >
+          <span
+            class="dusk-button__text"
+          >
+            CLOSE
+          </span>
+        </button>
+      </div>
+       
+      <div
+        class="banner banner--warning"
+      >
+        <svg
+          class="dusk-icon dusk-icon--size--large banner__icon banner__icon--warning"
+          role="graphics-symbol"
+          viewBox="0 0 24 24"
+        >
+          <path
+            d="M12,2L1,21H23M12,6L19.53,19H4.47M11,10V14H13V10M11,16V18H13V16"
+          />
+        </svg>
+        
+         
+        <div>
+          <strong
+            class="banner__title"
+          >
+            Self-referential transaction detected
+          </strong>
+           
+          <p>
+            You are attempting to initiate a transaction with your own wallet
+              address as both the sender and the receiver. Self-referential
+              transactions may not have meaningful purpose and will incur gas
+              fees.
+          </p>
+        </div>
+      </div>
     </div>
      
     <div
@@ -435,6 +730,7 @@ exports[`Send > Address step > should render the Send component Address step 1`]
           </span>
         </button>
       </div>
+       
     </div>
      
     <div
diff --git a/web-wallet/src/lib/dusk/string/__tests__/validateAddress.spec.js b/web-wallet/src/lib/dusk/string/__tests__/validateAddress.spec.js
index c6adc85197..3f051a8e00 100644
--- a/web-wallet/src/lib/dusk/string/__tests__/validateAddress.spec.js
+++ b/web-wallet/src/lib/dusk/string/__tests__/validateAddress.spec.js
@@ -2,12 +2,12 @@ import { validateAddress } from "..";
 import { describe, expect, it } from "vitest";
 
 describe("validateAddress", () => {
-  const validAddresses = [
+  const validShieldedAddresses = [
     "47jNTgAhzn9KCKF3msCfvKg3k1P1QpPCLZ3HG3AoNp87sQ5WNS3QyjckYHWeuXqW7uvLmbKgejpP8Xkcip89vnMM",
     "47jNTgAhzn9KCKF3msCfvKg3k1P1QpPCLZ3HG3AoNp87sQ5WNS3QyjckYHWeuXqW7uvLmbKgejpP8Xkcip89vnM",
   ];
 
-  const validAccounts = [
+  const validPublicAddresses = [
     "zTsZq814KfWUAQujzjBchbMEvqA1FiKBUakMCtAc2zCa74h9YVz4a2roYwS7LHDHeBwS1aap4f3GYhQBrxroYgsBcE4FJdkUbvpSD5LVXY6JRXNgMXgk6ckTPJUFKoHybff",
     "zTsZq814KfWUAQujzjBchbMEvqA1FiKBUakMCtAc2zCa74h9YVz4a2roYwS7LHDHeBwS1aap4f3GYhQBrxroYgsBcE4FJdkUbvpSD5LVXY6JRXNgMXgk6ckTPJUFKoHybf",
   ];
@@ -47,29 +47,51 @@ describe("validateAddress", () => {
     "47jNTgAhznIKCKF3msCfvKg3k1P1QpPCLZ3HG3AoNp87sQ5WNS3QyjckYHWeuXqW7uvLmbKgejpP8Xkcip89vnMM",
   ];
 
-  it("passes when supplied with a valid address", () => {
-    for (const address of validAddresses) {
-      const result = validateAddress(address);
+  // Shielded and public addresses for self-referential checks
+  const shieldedAddress =
+    "47jNTgAhzn9KCKF3msCfvKg3k1P1QpPCLZ3HG3AoNp87sQ5WNS3QyjckYHWeuXqW7uvLmbKgejpP8Xkcip89vnMM";
+  const publicAddress =
+    "zTsZq814KfWUAQujzjBchbMEvqA1FiKBUakMCtAc2zCa74h9YVz4a2roYwS7LHDHeBwS1aap4f3GYhQBrxroYgsBcE4FJdkUbvpSD5LVXY6JRXNgMXgk6ckTPJUFKoHybff";
 
+  it("passes with valid shielded addresses and checks self-referential status", () => {
+    for (const address of validShieldedAddresses) {
+      const result = validateAddress(address, shieldedAddress, publicAddress);
+
+      // Valid address should pass validation
       expect(result.isValid).toBe(true);
+
+      // Type should be "address"
       expect(result.type).toBe("address");
+
+      // Check if the address matches the shielded address
+      expect(result.isSelfReferential).toBe(address === shieldedAddress);
     }
   });
 
-  it("passes when supplied with a valid account", () => {
-    for (const account of validAccounts) {
-      const result = validateAddress(account);
+  it("passes with valid public addresses and checks self-referential status", () => {
+    for (const account of validPublicAddresses) {
+      const result = validateAddress(account, shieldedAddress, publicAddress);
 
+      // Valid account should pass validation
       expect(result.isValid).toBe(true);
+
+      // Type should be "account"
       expect(result.type).toBe("account");
+
+      // Check if the account matches the public address
+      expect(result.isSelfReferential).toBe(account === publicAddress);
     }
   });
 
   it("fails when supplied with an invalid input", () => {
     for (const input of invalidInputs) {
-      const result = validateAddress(input);
+      const result = validateAddress(input, shieldedAddress, publicAddress);
 
+      // Invalid inputs should fail validation
       expect(result.isValid).toBe(false);
+
+      // Self-referential check should not apply to invalid inputs
+      expect(result.isSelfReferential).toBeUndefined();
     }
   });
 });
diff --git a/web-wallet/src/lib/dusk/string/validateAddress.js b/web-wallet/src/lib/dusk/string/validateAddress.js
index 5350f7f120..2761ac3523 100644
--- a/web-wallet/src/lib/dusk/string/validateAddress.js
+++ b/web-wallet/src/lib/dusk/string/validateAddress.js
@@ -2,16 +2,26 @@ import { ProfileGenerator } from "$lib/vendor/w3sper.js/src/mod";
 
 /**
  * Validates if an input is an account or an address, with feedback on failure or success.
+ * Additionally, checks for self-referential input.
  * @param {String} input The input to validate.
- * @returns {{isValid: boolean, type?: "address" | "account"}} Validation result and the input type.
- *  - `isValid` {Boolean} - true if the input is valid, false if invalid.
- *  - `type?` {"address"|"account"} - The type of input that was validated.
+ * @param {String} shieldedAddress The shielded address to compare.
+ * @param {String} publicAddress The public address to compare.
+ * @returns {{
+ *  isValid: boolean,
+ *  type?: "address" | "account",
+ *  isSelfReferential?: boolean
+ * }} Validation result, the input type, and self-referential status.
  */
-export default function validateAddress(input) {
+export default function validateAddress(input, shieldedAddress, publicAddress) {
   const type = ProfileGenerator.typeOf(input);
 
   if (type === "account" || type === "address") {
+    const isSelfReferential =
+      (type === "account" && input === publicAddress) ||
+      (type === "address" && input === shieldedAddress);
+
     return {
+      isSelfReferential,
       isValid: true,
       type,
     };
diff --git a/web-wallet/src/routes/(app)/dashboard/send/+page.svelte b/web-wallet/src/routes/(app)/dashboard/send/+page.svelte
index 1ff2a7b78a..583153172a 100644
--- a/web-wallet/src/routes/(app)/dashboard/send/+page.svelte
+++ b/web-wallet/src/routes/(app)/dashboard/send/+page.svelte
@@ -34,11 +34,6 @@
   /** @type {"shielded" | "unshielded"} */
   let spendableSource = "shielded";
 
-  $: [gasSettings, language] = collectSettings($settingsStore);
-  $: duskFormatter = createCurrencyFormatter(language, "DUSK", 9);
-  $: ({ balance } = $walletStore);
-  $: [spendable, statuses] = getContractInfo(spendableSource, balance);
-
   /**
    * @param {CustomEvent<{ type: "account" | "address" | undefined}>} event
    */
@@ -49,10 +44,19 @@
       spendableSource = "shielded";
     }
   }
+
+  $: [gasSettings, language] = collectSettings($settingsStore);
+  $: duskFormatter = createCurrencyFormatter(language, "DUSK", 9);
+  $: ({ balance, currentProfile } = $walletStore);
+  $: [spendable, statuses] = getContractInfo(spendableSource, balance);
+  $: shieldedAddress = currentProfile ? currentProfile.address.toString() : "";
+  $: publicAddress = currentProfile ? currentProfile.account.toString() : "";
 </script>
 
 <IconHeadingCard gap="medium" heading="Send" icons={[mdiArrowTopRight]} reverse>
   <Send
+    {shieldedAddress}
+    {publicAddress}
     execute={executeSend}
     formatter={duskFormatter}
     {gasLimits}
diff --git a/web-wallet/src/routes/(app)/dashboard/send/__tests__/__snapshots__/page.spec.js.snap b/web-wallet/src/routes/(app)/dashboard/send/__tests__/__snapshots__/page.spec.js.snap
index e13d774ee3..be9d5d4dee 100644
--- a/web-wallet/src/routes/(app)/dashboard/send/__tests__/__snapshots__/page.spec.js.snap
+++ b/web-wallet/src/routes/(app)/dashboard/send/__tests__/__snapshots__/page.spec.js.snap
@@ -213,6 +213,7 @@ exports[`Send page > should render the send page 1`] = `
               </span>
             </button>
           </div>
+           
         </div>
          
         <div