Skip to content

[Backport] 5.2.0 cs backports#2430

Merged
furszy merged 6 commits intoPIVX-Project:5.2from
random-zebra:202106_5.2-cs-backports
Jun 20, 2021
Merged

[Backport] 5.2.0 cs backports#2430
furszy merged 6 commits intoPIVX-Project:5.2from
random-zebra:202106_5.2-cs-backports

Conversation

@random-zebra
Copy link

@random-zebra random-zebra commented Jun 18, 2021

Backports #2258 and #2428

@random-zebra random-zebra added this to the 5.2.0 milestone Jun 18, 2021
@random-zebra random-zebra self-assigned this Jun 18, 2021
furszy
furszy approved these changes Jun 18, 2021
View reviewed changes
Copy link

@furszy furszy left a comment
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

code review ACK 3698900a42cd082660dc5e4eceeb315ac7b093a3.

@random-zebra
[Tests] Proof of concept for P2CS vulnerability
9531fb8 
>>> Backports dced6c0 (PIVX-Project#2258)

The validation for P2CS scriptPubKey is incomplete and doesn't check all
the opcodes.
This opens a vulnerability.
A script could be crafted so that:
* it is identified as P2CS (passing IsPayToColdStaking), and recognized
by the wallet as ISMINE_SPENDABLE_DELEGATED.
* the assumed owner is not actually the owner (or not the only one) of
the coins.

In this Proof of concept, we craft a script that is recognized as own
P2CS by the owner wallet, but can actually be spent with **any** key.

This is achieved by including OP_DROP in a strategic position, so that,
during the script evaluation, part of the locking condition (included
only to fake IsPayToColdStaking) is removed, and replaced by a new
condition embedded in the spending scriptSig.
@random-zebra
[Script] Strict checks for OP_CHECKCOLDSTAKEVERIFY
84ed2d4 
>>> Backports 889a9e7 (PIVX-Project#2258)

Ensure stack consistency (size, signature and pubkey encoding) during
evaluation
@random-zebra
[Script] Strict test for IsPayToColdStaking
fecbb4a 
>>> Backports 74bc415 (PIVX-Project#2258)

check the whole script template (leave only the 20 bytes for the staker
keyID and 20 for the owner keyID).
@random-zebra
[Consensus] Introduce V5.2 network-upgrade params
7bec531 
>>> Backports 4e0c0b6 (PIVX-Project#2428)
@random-zebra
[Refactor] Move stack check inside CheckColdStake
5358c50 
>>> adapted from df11631 (PIVX-Project#2275)

without introducing the new opcode
@random-zebra
[Consensus] use v5.2 params to guard new cold-staking rules
62bf095 
>>> Backports caad3fb57fa8d7e4b33405be21dee8fa3659932c (PIVX-Project#2428)
@random-zebra random-zebra force-pushed the 202106_5.2-cs-backports branch from 3698900 to 62bf095 Compare June 19, 2021 11:58
@random-zebra
Copy link
Author

random-zebra commented Jun 19, 2021

Rebased on 5.2 to run updated GA jobs.

furszy
furszy approved these changes Jun 19, 2021
View reviewed changes
Copy link

@furszy furszy left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

re code-ACK 62bf095

Fuzzbawls
Fuzzbawls approved these changes Jun 19, 2021
View reviewed changes
Copy link
Collaborator

@Fuzzbawls Fuzzbawls left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

utACK 62bf095

@furszy furszy merged commit 3853bc4 into PIVX-Project:5.2 Jun 20, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Fuzzbawls Fuzzbawls Fuzzbawls approved these changes

+1 more reviewer

@furszy furszy furszy approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

@random-zebra random-zebra

Labels

Backport

Projects

None yet

Milestone

5.2.0

Development

Successfully merging this pull request may close these issues.

3 participants

@random-zebra @furszy @Fuzzbawls