Skip to content

Fix unsigned integer overflow in tapscript validation weight calculation #24217

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Feb 7, 2022
Merged

Fix unsigned integer overflow in tapscript validation weight calculation #24217

merged 1 commit into from
Feb 7, 2022

Conversation

maflcko
Copy link
Member

@maflcko maflcko commented Jan 31, 2022

Change the tapscript validation weight constants from uint64_t to int64_t, since the type of m_validation_weight_left is also int64_t. Otherwise this will cause sanitizer warnings.

This should be safe because signed integer overflow isn't expected to happen.

@maflcko maflcko mentioned this pull request Jan 31, 2022
Merged
@maflcko
Copy link
Member Author

maflcko commented Jan 31, 2022

On my system, this commit doesn't change the binary for gcc with O2, but it does change it for clang

PastaPastaPasta
PastaPastaPasta approved these changes Feb 1, 2022
View reviewed changes
Copy link
Contributor

@PastaPastaPasta PastaPastaPasta left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

utACK fadc54b

@maflcko
Copy link
Member Author

maflcko commented Feb 1, 2022

centos 8 CI failure can be ignored

theStack
theStack approved these changes Feb 1, 2022
View reviewed changes
Copy link
Contributor

@theStack theStack left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Code-review ACK fadc54b

For reference, these are the only instances where the constants VALIDATION_WEIGHT_{PER_SIGOP_PASSED,OFFSET} are used:

bitcoin/src/script/interpreter.cpp

Line 386 in 133f73e

execdata.m_validation_weight_left -= VALIDATION_WEIGHT_PER_SIGOP_PASSED;

bitcoin/src/script/interpreter.cpp

Line 1953 in 133f73e

execdata.m_validation_weight_left = ::GetSerializeSize(witness.stack, PROTOCOL_VERSION) + VALIDATION_WEIGHT_OFFSET;

luke-jr
luke-jr approved these changes Feb 5, 2022
View reviewed changes
Copy link
Member

@luke-jr luke-jr left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

utACK

@maflcko maflcko merged commit 5034b7f into bitcoin:master Feb 7, 2022
@maflcko maflcko deleted the 2201-tapscriptInt branch February 7, 2022 08:29
sidhujag pushed a commit to syscoin/syscoin that referenced this pull request Feb 7, 2022
Merge bitcoin#24217: Fix unsigned integer overflow in tapscript valid…
60fac30 
…ation weight calculation

fadc54b Fix unsigned integer overflow in tapscript validation weight calculation (MarcoFalke)

Pull request description:

  Change the tapscript validation weight constants from uint64_t to int64_t, since the type of m_validation_weight_left is also int64_t. Otherwise this will cause sanitizer warnings.

  This should be safe because signed integer overflow isn't expected to happen.

ACKs for top commit:
  PastaPastaPasta:
    utACK fadc54b
  theStack:
    Code-review ACK fadc54b

Tree-SHA512: 7a62d3a84733ab7827e3fa50d83f5493f2481b725c587e986eb2c128a769f023756f3ad964401526e386a847aa630a9f6c43a57d25ce5fd4af0b6bb5e0615528
@bitcoin bitcoin locked and limited conversation to collaborators Feb 7, 2023
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers
3 more reviewers

@theStack theStack theStack approved these changes

@luke-jr luke-jr luke-jr approved these changes

@PastaPastaPasta PastaPastaPasta PastaPastaPasta approved these changes

Reviewers whose approvals may not affect merge requirements
Assignees
No one assigned
Labels
Consensus
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@maflcko @theStack @luke-jr @PastaPastaPasta @DrahtBot