Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

ContractName::try_from() allows invalid ContractName to be created #4727

Open
jbencin opened this issue Apr 29, 2024 · 0 comments
Open

ContractName::try_from() allows invalid ContractName to be created #4727

jbencin opened this issue Apr 29, 2024 · 0 comments
Assignees
@jbencin
Labels
3.0
Milestone
Nakamoto-3.0.x

Comments

@jbencin
Copy link
Contributor

jbencin commented Apr 29, 2024

Description

The ContractName struct is implemented using a macro, like this:

guarded_string!(
    ContractName,
    "ContractName",
    CONTRACT_NAME_REGEX,
    MAX_STRING_LEN,
    RuntimeErrorType,
    RuntimeErrorType::BadNameValue
);

MAX_STRING_LEN is 128, so it's possible to construct a ContractName with up to 128 characters. However, when we implement StacksMessageCodec for ContractName:

    fn consensus_serialize<W: Write>(&self, fd: &mut W) -> Result<(), codec_error> {
        if self.as_bytes().len() < CONTRACT_MIN_NAME_LENGTH as usize
            || self.as_bytes().len() > CONTRACT_MAX_NAME_LENGTH as usize
        {
            // Error!
        }
        // ...
    }

CONTRACT_MAX_NAME_LENGTH is 40, much smaller than MAX_STRING_LEN. This means that ContractName::try_from() allows us to create structs that can't be serialized

Proposed solutions

  • Change the macro to use CONTRACT_MAX_NAME_LENGTH instead of MAX_STRING_LEN. This won't actually fix the problem, and will likely expose more invalid ContractNames that were never being serialized, but it will make invalid ContractNames easy to find and fix. Where it fails, we can replace ContractName::try_from() with ContractName::from_truncated() or ContractName::try_from_truncated()
  • Change CONTRACT_MAX_NAME_LENGTH to match MAX_STRING_LEN. Probably not what we want to do, but would fix the issue immediately

Related issues
@github-project-automation github-project-automation bot moved this to Status: 🆕 New in Stacks Core Eng Apr 29, 2024
@saralab saralab moved this from Status: 🆕 New to Status: 💻 In Progress in Stacks Core Eng Apr 29, 2024
@saralab saralab added the 3.0 label Apr 29, 2024
@jbencin jbencin mentioned this issue May 6, 2024
Merged
5 tasks
@saralab saralab added 3.1 and removed 3.0-must labels May 16, 2024
@saralab saralab added this to the Nakamoto-3.0.x milestone Jun 18, 2024
@saralab saralab removed the 3.1 label Jun 18, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@jbencin jbencin

Labels
3.0
Projects
Stacks Core Eng
Status: Status: 💻 In Progress
Milestone
Nakamoto-3.0.x
Development

No branches or pull requests
3 participants
@saralab @jbencin @smcclellan