Skip to content

Swen dev v4 cli pt 1/x#15

Merged
ananas-block merged 62 commits intomainfrom
swen-dev_v4-cli
Feb 18, 2023
Merged

Swen dev v4 cli pt 1/x#15
ananas-block merged 62 commits intomainfrom
swen-dev_v4-cli

Conversation

@SwenSchaeferjohann
Copy link
Contributor

@SwenSchaeferjohann SwenSchaeferjohann commented Feb 12, 2023
edited
Loading

will open up new cli-subtask branch after this is merged ( cli needs be extended, spl,relayer etc)
tests(functional_tests) and cli (user class, all cmds) are all running.

edit:

Summary of changes

  • Added relayer dir (wie)
  • Added CLI (tested)
  • Sdk:
    • Extended user class
    • Added provider class
    • Transaction class and tx params working with node/browsercontext
    • keypair class -> account class

Qs:

  • Verifiers0,1: need check for payer/wallet still?

ananas-block and others added 30 commits June 2, 2022 00:24
@ananas-block
added closing tmp account
57cffca
@ananas-block
removed warning
8280e9d
merged pull without fast-forward. updated gitignore, added cli/ dir
be69f83
Merge branch 'main' of github.com:Lightprotocol/light-protocol-onchain
c09f1f6
added base cli layout
4f29d40
olved merge conflicts in lockfiles taging
9e63294
removed sdk-ts/lib folder, added cli staging
a6926aa
added: newwallet, register, login, todo: fetchutxos
ce92bac
again removed light-sdk-ts/lib staging: built ts
bcd48b1
rm n Please enter the commit message for your changes. Lines starting
92635ff
rmd lib li cleanup, refactor
36fa655
cli done: shield,unshield,etc. (TODO: transfer add shielded pubkey re…
e3abd68 
…cipient or do a lookup)
rm
6c15ea6
commands working, layout wise done TODO: debug onchain, debug: getut…
07e0ef7 
…xosel, inutxos, oututxos

removed lib
removed lookuptable.txt
ad7d685
upd to yarn, debugging version mismatch - took current pckjsons (HEAD)
44379f1
added verifiertests
4ccbf53
shield, unshield non-SPL working. resolved merkletree build. TODO: tr…
5cd4bae 
…ansfer., SPL, 10-inUtxos
applied transaction rebase
7560a63
rebased tx
0fba8b6
extended readme, log cleanup, rm some repeated calls
dac67a2
readme: /relayer wip
0600b1c
latest
023f712
cleanup
f148882
tmp merge tx
d838219
removed keypair import in buildbalance.ts
b87a29f
merged: .relayer -> .params.relayer ++ instance -> provider
e104221
added verif0 -> provider.browserwallet err (is this required?)
48187a1
added verif1: wallet check (still required?) + functional_tests -> us…
43b3352 
…ing new Tx class
cli and onchain tests all running.
77618c7
ananas-block
ananas-block reviewed Feb 17, 2023
View reviewed changes
ananas-block
ananas-block reviewed Feb 17, 2023
View reviewed changes
light-system-programs/tests/verifier_tests.ts
@@ -19,7 +19,6 @@ import {
merkleTreeProgramId,
Copy link
Contributor

@ananas-block ananas-block Feb 17, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

this file impossible to review

@ananas-block
Copy link
Contributor

ananas-block commented Feb 18, 2023

the js files are still in the tests folder ...

@ananas-block ananas-block merged commit 9c405a2 into main Feb 18, 2023
@vadorovsky vadorovsky deleted the swen-dev_v4-cli branch November 12, 2023 20:36
vadorovsky pushed a commit to vadorovsky/light-protocol that referenced this pull request May 1, 2024
@ananas-block
Merge pull request Lightprotocol#15 from Lightprotocol/swen-dev_v4-cli
f01452b 
Swen dev v4 cli pt 1/x
ananas-block added a commit that referenced this pull request Feb 6, 2026
@ananas-block
fix: enforce canonical bump in PDA verification
cdafb79 
Audit issue #15 (HIGH): verify_pda used derive_address which accepts
any bump seed, allowing non-canonical bumps for ATAs. Switch to
find_program_address to derive the canonical bump and reject any
non-canonical bump with InvalidSeeds error.
This was referenced Feb 6, 2026
Merged
Closed
Closed
ananas-block added a commit that referenced this pull request Feb 9, 2026
@ananas-block
fix: remove bump from ATA instruction data and derive canonical bump …
6833acc 
…on-chain

Remove client-provided bump from CreateAssociatedTokenAccountInstructionData
and all SDK/test callers. The on-chain program now derives the canonical bump
via find_program_address, preventing non-canonical bump attacks (audit #15).

- Remove bump field from instruction data structs
- Update verify_pda to derive canonical bump and return it
- Update validate_ata_derivation and decompress_mint callers
- Remove _with_bump SDK variants and ATA2 dead code
- Remove associated_token::bump from macro attribute support
- Update derive_associated_token_account to return Pubkey only
- Update all 100+ call sites across SDK, tests, and TypeScript
ananas-block added a commit that referenced this pull request Feb 11, 2026
@ananas-block
fix: enforce canonical bump in PDA verification
e03ec34 
Audit issue #15 (HIGH): verify_pda used derive_address which accepts
any bump seed, allowing non-canonical bumps for ATAs. Switch to
find_program_address to derive the canonical bump and reject any
non-canonical bump with InvalidSeeds error.
ananas-block added a commit that referenced this pull request Feb 11, 2026
@ananas-block
fix: remove bump from ATA instruction data and derive canonical bump …
76a2a44 
…on-chain

Remove client-provided bump from CreateAssociatedTokenAccountInstructionData
and all SDK/test callers. The on-chain program now derives the canonical bump
via find_program_address, preventing non-canonical bump attacks (audit #15).

- Remove bump field from instruction data structs
- Update verify_pda to derive canonical bump and return it
- Update validate_ata_derivation and decompress_mint callers
- Remove _with_bump SDK variants and ATA2 dead code
- Remove associated_token::bump from macro attribute support
- Update derive_associated_token_account to return Pubkey only
- Update all 100+ call sites across SDK, tests, and TypeScript
ananas-block added a commit that referenced this pull request Feb 11, 2026
@ananas-block
fix: enforce canonical bump in ata verification (#2249)
291933b 
* fix: enforce canonical bump in PDA verification

Audit issue #15 (HIGH): verify_pda used derive_address which accepts
any bump seed, allowing non-canonical bumps for ATAs. Switch to
find_program_address to derive the canonical bump and reject any
non-canonical bump with InvalidSeeds error.

* fix: use pinocchio::pubkey::find_program_address instead of pinocchio_pubkey

* fix: remove bump from ATA instruction data and derive canonical bump on-chain

Remove client-provided bump from CreateAssociatedTokenAccountInstructionData
and all SDK/test callers. The on-chain program now derives the canonical bump
via find_program_address, preventing non-canonical bump attacks (audit #15).

- Remove bump field from instruction data structs
- Update verify_pda to derive canonical bump and return it
- Update validate_ata_derivation and decompress_mint callers
- Remove _with_bump SDK variants and ATA2 dead code
- Remove associated_token::bump from macro attribute support
- Update derive_associated_token_account to return Pubkey only
- Update all 100+ call sites across SDK, tests, and TypeScript

* fix: update wrong bump test for canonical bump derivation

With canonical bumps, the program derives the bump internally so
providing a wrong bump is no longer possible. Replace with a test
that passes a wrong ATA address to verify PDA validation.

* fix test

* fix lint
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@ananas-block ananas-block ananas-block left review comments

+1 more reviewer

@vadorovsky vadorovsky vadorovsky left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@SwenSchaeferjohann @ananas-block @vadorovsky