Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

FIX: Ledger Audit Vulnerabilities #1

Closed
wants to merge 35 commits into from
Closed

FIX: Ledger Audit Vulnerabilities #1

wants to merge 35 commits into from

Conversation

n4l5u0r
Copy link

@n4l5u0r n4l5u0r commented Nov 8, 2024

FIX: Ledger Audit Vulnerabilities

Z4karia and others added 30 commits October 28, 2024 17:23
@Z4karia
fix: app update audit fix
cd1ff73
@Z4karia
bump version
4758913
@Z4karia
Merge pull request #19 from blooo-io/fix/app-update-audit-fix
980875b 
fix: app update audit fix
@Z4karia
ui: update function name
a8126c8
@Z4karia
update credits
3dfc63e
@Z4karia
ui: update function name
1c2a34a
@Z4karia
Merge pull request #20 from blooo-io/fix/app-update-audit-fix
50b42c2 
UI Update: function name
@keiff3r
fix: resolve possible out of bound issue
c3118e2
@keiff3r
fix: patch potential integer underflow
cede993
@keiff3r
fix: disable debuging
1f68a32
@keiff3r
fix: add a check before using variable
f958dd5
@keiff3r
fix: handle weakness
7a10c09
@keiff3r
fix: add a condition in display_data_content_and_confirm
e3c24ae
@keiff3r
chore: bump version
e6b9553
@keiff3r
fix: remove compilation warning
3443fb6
@keiff3r
fix: always include debug helpers header
a7d8e22 
- Move debug-helpers/debug.h inclusion out of DEBUG=1 condition
- Keep -g flag only for debug builds
@keiff3r
test: generate golden snapshots
a71d92e
@keiff3r
style: change copyright from Blooo to Acre
256eecc 
- change 'Blooo' to 'Acre'
- generate golden snapshots
@keiff3r
chore: update Makefile for debug configuration
f560302 
- Remove inclusion of debug-helpers/debug.h from default CFLAGS.
- Add inclusion of debug-helpers/debug.h to CFLAGS only when DEBUG=1.
- Ensure CFLAGS includes -g for debugging when DEBUG=1.
@n4l5u0r
fix: added missing refs for debug tools
4a187a7
@keiff3r
style: change developer from Blooo to Acre
6b22bc5 
- change "Blooo" to "Acre"
- generate golden snapshots
@keiff3r
Merge pull request #21 from blooo-io/fix/address-ledger-audit-vuln
cf8f68c 
Fix: address Ledger's audit vulnerabilities
@n4l5u0r
fix: applied similar derivation path as bitcoin app to enable fingerp…
f704e80 
…rinting methods on real devices.
@n4l5u0r
Merge pull request #23 from blooo-io/fix/LDG-494--app-fix-fingerprint…
1f7273a 
…-problem
@n4l5u0r
fix:bump version
fe7d6a4
@n4l5u0r
fix: adjusted snapshot
375fff4
@n4l5u0r
fxi: aligned snapshots
a0b66f4
@n4l5u0r
Merge pull request #24 from blooo-io/fix/bump-version-1-1-3
67d9467 
fix:bump version
@keiff3r
fix: initialise DEBUG properly
b3d0952
@keiff3r
fix(handler/withdraw): Correct compute_tx_hash 's implementation
a28051a 
- Replace hardcoded `domain_separator_hash` with `abi_encoded_chain_id` for mainnet and testnet variants.
- Add `domain_separator_typehash`.
- Add function `compute_domain_separator_hash`
- Update `compute_tx_hash` to include domain separator hash computation.
@n4l5u0r n4l5u0r closed this Nov 18, 2024
@n4l5u0r n4l5u0r mentioned this pull request Nov 18, 2024
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@n4l5u0r @tdejoigny-ledger @Z4karia @keiff3r