Consolidate redundant implementations of ParseHashStr #14307
Merged
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
maflcko
reviewed
Sep 24, 2018
src/core_read.cpp
Outdated
| @@ -193,14 +193,13 @@ bool DecodePSBT(PartiallySignedTransaction& psbt, const std::string& base64_tx, | |||
| return true; | |||
| } | |||
|
|
|||
| uint256 ParseHashStr(const std::string& strHex, const std::string& strName) | |||
| bool ParseHashStr(const std::string& strReq, uint256& v) | |||
There was a problem hiding this comment.
nit: Could keep the name strHex and result to minimize the diff?
src/core_read.cpp
Outdated
| { | ||
| if (!IsHex(strHex)) // Note: IsHex("") is false | ||
| throw std::runtime_error(strName + " must be hexadecimal string (not '" + strHex + "')"); | ||
| if (!IsHex(strReq) || (strReq.size() != 64)) |
There was a problem hiding this comment.
Nit: Redundant parentheses around strReq.size() != 64 :-)
| uint256 txid = ParseHashStr(prevOut["txid"].get_str(), "txid"); | ||
| uint256 txid; | ||
| if (!ParseHashStr(prevOut["txid"].get_str(), txid)) { | ||
| throw std::runtime_error("txid must be hexadecimal string (not '" + prevOut["txid"].get_str() + "')"); |
There was a problem hiding this comment.
I know this is unchanged from the previous version, but could there be circumstances where this opens up for log file injection? Safer not to echo the input?
c76c7ad to
dc95535
Compare
src/rpc/mining.cpp
Outdated
| uint256 hash = ParseHashStr(request.params[0].get_str(), "txid"); | ||
| uint256 hash; | ||
| if (!ParseHashStr(request.params[0].get_str(), hash)) { | ||
| throw JSONRPCError(RPC_INVALID_PARAMETER, "txid must be hexadecimal string (not '" + request.params[0].get_str() + "')"); |
There was a problem hiding this comment.
I know this is unchanged from the previous version, but could there be circumstances where this opens up for log file injection? Safer not to echo the input?
|
Concept ACK Thanks for taking on this issue. Closing #14288. |
e063b15 to
a85bbe9
Compare
Reviewers, this pull request conflicts with the following ones:
If you consider this pull request important, please also help to review the conflicting pull requests. Ideally, start with the one that should be merged first. |
This was referenced Sep 24, 2018
a85bbe9 to
c5f066e
Compare
|
Rebased for #13424 |
c5f066e to
0b5791e
Compare
|
Converted one parse from |
src/core_read.cpp
Outdated
| { | ||
| if (!IsHex(strHex)) // Note: IsHex("") is false | ||
| throw std::runtime_error(strName + " must be hexadecimal string (not '" + strHex + "')"); | ||
| if (!IsHex(strHex) || (strHex.size() != 64)) |
There was a problem hiding this comment.
Nit: Redundant parentheses around strHex.size() != 64 :-)
There was a problem hiding this comment.
Could go either way but I like explicit precedence to guide the eye.
There was a problem hiding this comment.
Perhaps swap the two boolean conditions? If the condition strHex.size() is false then the function can return without having to evaluate the condition IsHex(strHex)
if ((strHex.size() != 64) || !IsHex(strHex)) return false;
src/bitcoin-tx.cpp
Outdated
| uint256 txid(uint256S(strTxid)); | ||
| uint256 txid; | ||
| if (!ParseHashStr(vStrInputParts[0], txid)) { | ||
| throw std::runtime_error("txid must be hexadecimal string (not '" + vStrInputParts[0] + "')"); |
There was a problem hiding this comment.
I know this is unchanged from the previous version, but could there be circumstances where this opens up for log file injection? Safer not to echo the input?
There was a problem hiding this comment.
This had been changed so I switched it back.
|
What about adding |
c60cfb7 to
f78c166
Compare
|
I like |
f78c166 to
909a8f6
Compare
|
@MarcoFalke added tests, only two of them fail before this change because of existing checks:
|
l2a5b1
reviewed
Sep 25, 2018
src/core_io.h
Outdated
| @@ -25,7 +25,7 @@ std::string ScriptToAsmStr(const CScript& script, const bool fAttemptSighashDeco | |||
| bool DecodeHexTx(CMutableTransaction& tx, const std::string& hex_tx, bool try_no_witness = false, bool try_witness = true); | |||
| bool DecodeHexBlk(CBlock&, const std::string& strHexBlk); | |||
| bool DecodeHexBlockHeader(CBlockHeader&, const std::string& hex_header); | |||
| uint256 ParseHashStr(const std::string&, const std::string& strName); | |||
| bool ParseHashStr(const std::string& strHex, uint256& result); | |||
There was a problem hiding this comment.
Perhaps we can document bool ParseHashStr(const std::string& strHex, uint256& result) and specify the pre-condition that the strHex argument must be a hexadecimal string with a length of 64 bytes.
src/core_read.cpp
Outdated
| { | ||
| if (!IsHex(strHex)) // Note: IsHex("") is false | ||
| throw std::runtime_error(strName + " must be hexadecimal string (not '" + strHex + "')"); | ||
| if (!IsHex(strHex) || (strHex.size() != 64)) |
There was a problem hiding this comment.
Perhaps swap the two boolean conditions? If the condition strHex.size() is false then the function can return without having to evaluate the condition IsHex(strHex)
if ((strHex.size() != 64) || !IsHex(strHex)) return false;This change: * adds a length check to ParseHashStr, appropriate given its use to populate a 256-bit number from a hex str. * allows the caller to handle the failure, which allows for the more appropriate JSONRPCError on failure in prioritisetransaction rpc
909a8f6 to
9c5af58
Compare
|
Switched the condition and added docs. |
|
utACK 9c5af58 |
promag
reviewed
Sep 25, 2018
| * @param[out] result the result of the parasing | ||
| * @returns true if successful, false if not | ||
| * | ||
| * @see ParseHashV for an RPC-oriented version of this |
There was a problem hiding this comment.
ParseHashV could use ParseHashStr?
There was a problem hiding this comment.
Happy to do that as a follow-up.
|
utACK 9c5af58. |
|
utACK 9c5af58 |
maflcko
pushed a commit
that referenced
this pull request
Sep 27, 2018
9c5af58 Consolidate redundant implementations of ParseHashStr (Ben Woosley) Pull request description: This change: * adds a length check to all calls to `ParseHashStr`, appropriate given its use to populate a 256-bit number from a hex str * allows the caller to handle the failure, which allows for the more appropriate `JSONRPCError` on failure in `prioritisetransaction` rpc Relative to #14288 Tree-SHA512: baa791147e5ceb3c30c70df3981aaf807bf7d4a90a0be3625540b59aa4b9a9d303a452bfef18bf167cbb833ef9591b4ef5948bf4a1ce67b421d804ae8d20ea53
deadalnix
pushed a commit
to Bitcoin-ABC/bitcoin-abc
that referenced
this pull request
Feb 18, 2020
Summary:
9c5af58d51 Consolidate redundant implementations of ParseHashStr (Ben Woosley)
Pull request description:
This change:
* adds a length check to all calls to `ParseHashStr`, appropriate given its use to populate
a 256-bit number from a hex str
* allows the caller to handle the failure, which allows for the more
appropriate `JSONRPCError` on failure in `prioritisetransaction` rpc
Relative to #14288
Tree-SHA512: baa791147e5ceb3c30c70df3981aaf807bf7d4a90a0be3625540b59aa4b9a9d303a452bfef18bf167cbb833ef9591b4ef5948bf4a1ce67b421d804ae8d20ea53
Backport of Core [[bitcoin/bitcoin#14307 | PR14307]]
bitcoin/bitcoin#14307
Depends on D5294
Test Plan:
ninja check
ninja check-functional
Reviewers: O1 Bitcoin ABC, #bitcoin_abc, Fabien
Reviewed By: O1 Bitcoin ABC, #bitcoin_abc, Fabien
Differential Revision: https://reviews.bitcoinabc.org/D5295
ftrader
pushed a commit
to bitcoin-cash-node/bitcoin-cash-node
that referenced
this pull request
May 19, 2020
Summary:
9c5af58d51 Consolidate redundant implementations of ParseHashStr (Ben Woosley)
Pull request description:
This change:
* adds a length check to all calls to `ParseHashStr`, appropriate given its use to populate
a 256-bit number from a hex str
* allows the caller to handle the failure, which allows for the more
appropriate `JSONRPCError` on failure in `prioritisetransaction` rpc
Relative to #14288
Tree-SHA512: baa791147e5ceb3c30c70df3981aaf807bf7d4a90a0be3625540b59aa4b9a9d303a452bfef18bf167cbb833ef9591b4ef5948bf4a1ce67b421d804ae8d20ea53
Backport of Core [[bitcoin/bitcoin#14307 | PR14307]]
bitcoin/bitcoin#14307
Depends on D5294
Test Plan:
ninja check
ninja check-functional
Reviewers: O1 Bitcoin ABC, #bitcoin_abc, Fabien
Reviewed By: O1 Bitcoin ABC, #bitcoin_abc, Fabien
Differential Revision: https://reviews.bitcoinabc.org/D5295
pravblockc
pushed a commit
to pravblockc/dash
that referenced
this pull request
Jul 30, 2021
…ashStr 9c5af58 Consolidate redundant implementations of ParseHashStr (Ben Woosley) Pull request description: This change: * adds a length check to all calls to `ParseHashStr`, appropriate given its use to populate a 256-bit number from a hex str * allows the caller to handle the failure, which allows for the more appropriate `JSONRPCError` on failure in `prioritisetransaction` rpc Relative to bitcoin#14288 Tree-SHA512: baa791147e5ceb3c30c70df3981aaf807bf7d4a90a0be3625540b59aa4b9a9d303a452bfef18bf167cbb833ef9591b4ef5948bf4a1ce67b421d804ae8d20ea53
pravblockc
pushed a commit
to pravblockc/dash
that referenced
this pull request
Aug 3, 2021
…ashStr 9c5af58 Consolidate redundant implementations of ParseHashStr (Ben Woosley) Pull request description: This change: * adds a length check to all calls to `ParseHashStr`, appropriate given its use to populate a 256-bit number from a hex str * allows the caller to handle the failure, which allows for the more appropriate `JSONRPCError` on failure in `prioritisetransaction` rpc Relative to bitcoin#14288 Tree-SHA512: baa791147e5ceb3c30c70df3981aaf807bf7d4a90a0be3625540b59aa4b9a9d303a452bfef18bf167cbb833ef9591b4ef5948bf4a1ce67b421d804ae8d20ea53
pravblockc
pushed a commit
to pravblockc/dash
that referenced
this pull request
Aug 4, 2021
…shStr 9c5af58 Consolidate redundant implementations of ParseHashStr (Ben Woosley) Pull request description: This change: * adds a length check to all calls to `ParseHashStr`, appropriate given its use to populate a 256-bit number from a hex str * allows the caller to handle the failure, which allows for the more appropriate `JSONRPCError` on failure in `prioritisetransaction` rpc Relative to bitcoin#14288 Tree-SHA512: baa791147e5ceb3c30c70df3981aaf807bf7d4a90a0be3625540b59aa4b9a9d303a452bfef18bf167cbb833ef9591b4ef5948bf4a1ce67b421d804ae8d20ea53
pravblockc
pushed a commit
to pravblockc/dash
that referenced
this pull request
Aug 4, 2021
…shStr 9c5af58 Consolidate redundant implementations of ParseHashStr (Ben Woosley) Pull request description: This change: * adds a length check to all calls to `ParseHashStr`, appropriate given its use to populate a 256-bit number from a hex str * allows the caller to handle the failure, which allows for the more appropriate `JSONRPCError` on failure in `prioritisetransaction` rpc Relative to bitcoin#14288 Tree-SHA512: baa791147e5ceb3c30c70df3981aaf807bf7d4a90a0be3625540b59aa4b9a9d303a452bfef18bf167cbb833ef9591b4ef5948bf4a1ce67b421d804ae8d20ea53
pravblockc
pushed a commit
to pravblockc/dash
that referenced
this pull request
Aug 4, 2021
…shStr 9c5af58 Consolidate redundant implementations of ParseHashStr (Ben Woosley) Pull request description: This change: * adds a length check to all calls to `ParseHashStr`, appropriate given its use to populate a 256-bit number from a hex str * allows the caller to handle the failure, which allows for the more appropriate `JSONRPCError` on failure in `prioritisetransaction` rpc Relative to bitcoin#14288 Tree-SHA512: baa791147e5ceb3c30c70df3981aaf807bf7d4a90a0be3625540b59aa4b9a9d303a452bfef18bf167cbb833ef9591b4ef5948bf4a1ce67b421d804ae8d20ea53
pravblockc
pushed a commit
to pravblockc/dash
that referenced
this pull request
Aug 4, 2021
…shStr 9c5af58 Consolidate redundant implementations of ParseHashStr (Ben Woosley) Pull request description: This change: * adds a length check to all calls to `ParseHashStr`, appropriate given its use to populate a 256-bit number from a hex str * allows the caller to handle the failure, which allows for the more appropriate `JSONRPCError` on failure in `prioritisetransaction` rpc Relative to bitcoin#14288 Tree-SHA512: baa791147e5ceb3c30c70df3981aaf807bf7d4a90a0be3625540b59aa4b9a9d303a452bfef18bf167cbb833ef9591b4ef5948bf4a1ce67b421d804ae8d20ea53
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This change:
ParseHashStr, appropriate given its use to populatea 256-bit number from a hex str
appropriate
JSONRPCErroron failure inprioritisetransactionrpcRelative to #14288