Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix: x/tx/decode: fix (*Decoder).Decode crash with invalid length prefix #16681

Merged
merged 1 commit into from
Jun 26, 2023
Merged

fix: x/tx/decode: fix (*Decoder).Decode crash with invalid length prefix #16681

merged 1 commit into from
Jun 26, 2023

Conversation

odeke-em
Copy link
Collaborator

Catches a panic from an invalid length prefix found by fuzzing. This change instead returns an error and a test.

Fixes #16680

@odeke-em odeke-em requested a review from a team as a code owner June 26, 2023 04:15
@odeke-em
fix: x/tx/decode: fix (*Decoder).Decode crash with invalid length prefix
63b9f0b 
Catches a panic from an invalid length prefix found by fuzzing.
This change instead returns an error and a test.

Fixes #16680
@odeke-em odeke-em force-pushed the x-tx-decode-fix-decode.Decoder-crash-with-invalid-length-prefix branch from 16c2c17 to 63b9f0b Compare June 26, 2023 04:16
@julienrbrt julienrbrt added this pull request to the merge queue Jun 26, 2023
Merged via the queue into main with commit 51e0181 Jun 26, 2023
@julienrbrt julienrbrt deleted the x-tx-decode-fix-decode.Decoder-crash-with-invalid-length-prefix branch June 26, 2023 13:15
@odeke-em
Copy link
Collaborator Author

@kocubinski you had mentioned that we should backport this PR, and get it into "Eden"

@julienrbrt
Copy link
Member

@kocubinski you had mentioned that we should backport this PR, and get it into "Eden"

x/tx is a standalone go.mod that does not import the SDK, we tag it from main, so there is no need to backport.
We'll bump the dependency in the release branch afterwards.

@coderabbitai coderabbitai bot mentioned this pull request Apr 22, 2024
Merged
12 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@julienrbrt julienrbrt julienrbrt approved these changes

@tac0turtle tac0turtle tac0turtle approved these changes

@alexanderbez alexanderbez alexanderbez approved these changes

@aaronc aaronc Awaiting requested review from aaronc aaronc is a code owner

@testinginprod testinginprod Awaiting requested review from testinginprod testinginprod is a code owner

Assignees
No one assigned
Labels
C:x/tx
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

x/tx/decode: (*Decoder).Decode crashes with a runtime panic slice out bounds with invalid length prefix
4 participants
@odeke-em @julienrbrt @alexanderbez @tac0turtle