blockfilter: Avoid out-of-bounds script access. #14073
Merged
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
|
Concept ACK Very nice find @TheBlueMatt |
|
utACK 40a9c6c38c6aeaac83fe2639c9ac2d2b262296fc |
gmaxwell
reviewed
Aug 27, 2018
src/blockfilter.cpp
Outdated
| @@ -208,7 +208,7 @@ static GCSFilter::ElementSet BasicFilterElements(const CBlock& block, | |||
| for (const CTransactionRef& tx : block.vtx) { | |||
| for (const CTxOut& txout : tx->vout) { | |||
| const CScript& script = txout.scriptPubKey; | |||
| if (script[0] == OP_RETURN) continue; | |||
| if (script.size() > 0 && script[0] == OP_RETURN) continue; | |||
| elements.emplace(script.begin(), script.end()); | |||
There was a problem hiding this comment.
Now it looks like it adds size 0 entries to the filter, which is a violation of BIP158.
I believe this should be "script.size() < 1 ||". No?
There was a problem hiding this comment.
nit to @gmaxwell comment, script.empty() || ....
promag
reviewed
Aug 27, 2018
src/blockfilter.cpp
Outdated
| @@ -208,7 +208,7 @@ static GCSFilter::ElementSet BasicFilterElements(const CBlock& block, | |||
| for (const CTransactionRef& tx : block.vtx) { | |||
| for (const CTxOut& txout : tx->vout) { | |||
| const CScript& script = txout.scriptPubKey; | |||
| if (script[0] == OP_RETURN) continue; | |||
| if (script.size() > 0 && script[0] == OP_RETURN) continue; | |||
| elements.emplace(script.begin(), script.end()); | |||
There was a problem hiding this comment.
nit to @gmaxwell comment, script.empty() || ....
src/test/blockfilter_tests.cpp
Outdated
| @@ -67,6 +67,7 @@ BOOST_AUTO_TEST_CASE(blockfilter_basic_test) | |||
| CMutableTransaction tx_2; | |||
| tx_2.vout.emplace_back(300, included_scripts[2]); | |||
| tx_2.vout.emplace_back(0, excluded_scripts[0]); | |||
| tx_2.vout.emplace_back(600, included_scripts[5]); // Script is empty | |||
There was a problem hiding this comment.
So this should be excluded_scripts[2]?
nit, above in L62 add something along
// This script is left empty.
// excluded_scripts[2];Code change also avoids out-of-bounds script access bug.
|
utACK f055995. |
|
utACK |
|
re-utACK f055995 |
laanwj
added a commit
that referenced
this pull request
Aug 31, 2018
f055995 blockfilter: Omit empty scripts from filter contents. (Jim Posen) Pull request description: Caught during review of #12254 by @TheBlueMatt. #12254 (comment) Tree-SHA512: cfc9e3eeaba12a14fd3d2e1ccce1a1f89e8cf44cc340ceec05d2d5fa61d27ff64e355603f4ad2184ff73c0ed23dfdab6e2103bddc48f3b76cb13b88d428770ac
PastaPastaPasta
pushed a commit
to PastaPastaPasta/dash
that referenced
this pull request
Apr 15, 2020
f055995 blockfilter: Omit empty scripts from filter contents. (Jim Posen) Pull request description: Caught during review of bitcoin#12254 by @TheBlueMatt. bitcoin#12254 (comment) Tree-SHA512: cfc9e3eeaba12a14fd3d2e1ccce1a1f89e8cf44cc340ceec05d2d5fa61d27ff64e355603f4ad2184ff73c0ed23dfdab6e2103bddc48f3b76cb13b88d428770ac
PastaPastaPasta
pushed a commit
to PastaPastaPasta/dash
that referenced
this pull request
Apr 16, 2020
f055995 blockfilter: Omit empty scripts from filter contents. (Jim Posen) Pull request description: Caught during review of bitcoin#12254 by @TheBlueMatt. bitcoin#12254 (comment) Tree-SHA512: cfc9e3eeaba12a14fd3d2e1ccce1a1f89e8cf44cc340ceec05d2d5fa61d27ff64e355603f4ad2184ff73c0ed23dfdab6e2103bddc48f3b76cb13b88d428770ac
PastaPastaPasta
pushed a commit
to PastaPastaPasta/dash
that referenced
this pull request
Apr 16, 2020
f055995 blockfilter: Omit empty scripts from filter contents. (Jim Posen) Pull request description: Caught during review of bitcoin#12254 by @TheBlueMatt. bitcoin#12254 (comment) Tree-SHA512: cfc9e3eeaba12a14fd3d2e1ccce1a1f89e8cf44cc340ceec05d2d5fa61d27ff64e355603f4ad2184ff73c0ed23dfdab6e2103bddc48f3b76cb13b88d428770ac
PastaPastaPasta
pushed a commit
to PastaPastaPasta/dash
that referenced
this pull request
Apr 16, 2020
f055995 blockfilter: Omit empty scripts from filter contents. (Jim Posen) Pull request description: Caught during review of bitcoin#12254 by @TheBlueMatt. bitcoin#12254 (comment) Tree-SHA512: cfc9e3eeaba12a14fd3d2e1ccce1a1f89e8cf44cc340ceec05d2d5fa61d27ff64e355603f4ad2184ff73c0ed23dfdab6e2103bddc48f3b76cb13b88d428770ac
PastaPastaPasta
pushed a commit
to PastaPastaPasta/dash
that referenced
this pull request
Apr 16, 2020
f055995 blockfilter: Omit empty scripts from filter contents. (Jim Posen) Pull request description: Caught during review of bitcoin#12254 by @TheBlueMatt. bitcoin#12254 (comment) Tree-SHA512: cfc9e3eeaba12a14fd3d2e1ccce1a1f89e8cf44cc340ceec05d2d5fa61d27ff64e355603f4ad2184ff73c0ed23dfdab6e2103bddc48f3b76cb13b88d428770ac
PastaPastaPasta
pushed a commit
to PastaPastaPasta/dash
that referenced
this pull request
Jun 12, 2020
f055995 blockfilter: Omit empty scripts from filter contents. (Jim Posen) Pull request description: Caught during review of bitcoin#12254 by @TheBlueMatt. bitcoin#12254 (comment) Tree-SHA512: cfc9e3eeaba12a14fd3d2e1ccce1a1f89e8cf44cc340ceec05d2d5fa61d27ff64e355603f4ad2184ff73c0ed23dfdab6e2103bddc48f3b76cb13b88d428770ac
PastaPastaPasta
pushed a commit
to PastaPastaPasta/dash
that referenced
this pull request
Jun 13, 2020
f055995 blockfilter: Omit empty scripts from filter contents. (Jim Posen) Pull request description: Caught during review of bitcoin#12254 by @TheBlueMatt. bitcoin#12254 (comment) Tree-SHA512: cfc9e3eeaba12a14fd3d2e1ccce1a1f89e8cf44cc340ceec05d2d5fa61d27ff64e355603f4ad2184ff73c0ed23dfdab6e2103bddc48f3b76cb13b88d428770ac
PastaPastaPasta
pushed a commit
to PastaPastaPasta/dash
that referenced
this pull request
Jun 17, 2020
f055995 blockfilter: Omit empty scripts from filter contents. (Jim Posen) Pull request description: Caught during review of bitcoin#12254 by @TheBlueMatt. bitcoin#12254 (comment) Tree-SHA512: cfc9e3eeaba12a14fd3d2e1ccce1a1f89e8cf44cc340ceec05d2d5fa61d27ff64e355603f4ad2184ff73c0ed23dfdab6e2103bddc48f3b76cb13b88d428770ac
gades
pushed a commit
to cosanta/cosanta-core
that referenced
this pull request
Jul 1, 2021
f055995 blockfilter: Omit empty scripts from filter contents. (Jim Posen) Pull request description: Caught during review of bitcoin#12254 by @TheBlueMatt. bitcoin#12254 (comment) Tree-SHA512: cfc9e3eeaba12a14fd3d2e1ccce1a1f89e8cf44cc340ceec05d2d5fa61d27ff64e355603f4ad2184ff73c0ed23dfdab6e2103bddc48f3b76cb13b88d428770ac
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Caught during review of #12254 by @TheBlueMatt. #12254 (comment)