From 18564ab342ae0268ba228a8473e6b8c4cf0b517f Mon Sep 17 00:00:00 2001 From: samkim-crypto Date: Fri, 6 Dec 2024 12:10:27 +0900 Subject: [PATCH] [core] check for excessive secp256r1 signature verification in the banking stage (#3938) --- Cargo.lock | 1 + core/Cargo.toml | 1 + core/src/banking_stage/packet_filter.rs | 6 +++++- programs/sbf/Cargo.lock | 1 + svm/examples/Cargo.lock | 1 + 5 files changed, 9 insertions(+), 1 deletion(-) diff --git a/Cargo.lock b/Cargo.lock index e429d3058bddac..50042ccc311f2e 100644 --- a/Cargo.lock +++ b/Cargo.lock @@ -6750,6 +6750,7 @@ dependencies = [ "solana-runtime-transaction", "solana-sanitize", "solana-sdk", + "solana-sdk-ids", "solana-send-transaction-service", "solana-short-vec", "solana-stake-program", diff --git a/core/Cargo.toml b/core/Cargo.toml index df42ec84657648..8f400b02c108ea 100644 --- a/core/Cargo.toml +++ b/core/Cargo.toml @@ -77,6 +77,7 @@ solana-runtime = { workspace = true } solana-runtime-transaction = { workspace = true } solana-sanitize = { workspace = true } solana-sdk = { workspace = true } +solana-sdk-ids = { workspace = true } solana-send-transaction-service = { workspace = true } solana-short-vec = { workspace = true } solana-streamer = { workspace = true } diff --git a/core/src/banking_stage/packet_filter.rs b/core/src/banking_stage/packet_filter.rs index 057f0f90c45df9..b9176c9b8ac91d 100644 --- a/core/src/banking_stage/packet_filter.rs +++ b/core/src/banking_stage/packet_filter.rs @@ -5,6 +5,7 @@ use { solana_sdk::{ ed25519_program, feature_set::FeatureSet, saturating_add_assign, secp256k1_program, }, + solana_sdk_ids::secp256r1_program, thiserror::Error, }; @@ -48,7 +49,10 @@ impl ImmutableDeserializedPacket { pub fn check_excessive_precompiles(&self) -> Result<(), PacketFilterFailure> { let mut num_precompile_signatures: u64 = 0; for (program_id, ix) in self.transaction().get_message().program_instructions_iter() { - if secp256k1_program::check_id(program_id) || ed25519_program::check_id(program_id) { + if secp256k1_program::check_id(program_id) + || ed25519_program::check_id(program_id) + || secp256r1_program::check_id(program_id) + { let num_signatures = ix.data.first().map_or(0, |byte| u64::from(*byte)); saturating_add_assign!(num_precompile_signatures, num_signatures); } diff --git a/programs/sbf/Cargo.lock b/programs/sbf/Cargo.lock index 450ae14d3e6fe4..e33cf437905ca9 100644 --- a/programs/sbf/Cargo.lock +++ b/programs/sbf/Cargo.lock @@ -5441,6 +5441,7 @@ dependencies = [ "solana-runtime-transaction", "solana-sanitize", "solana-sdk", + "solana-sdk-ids", "solana-send-transaction-service", "solana-short-vec", "solana-streamer", diff --git a/svm/examples/Cargo.lock b/svm/examples/Cargo.lock index 0f16de46ae4f82..dee8abdb6d62d7 100644 --- a/svm/examples/Cargo.lock +++ b/svm/examples/Cargo.lock @@ -5292,6 +5292,7 @@ dependencies = [ "solana-runtime-transaction", "solana-sanitize", "solana-sdk", + "solana-sdk-ids", "solana-send-transaction-service", "solana-short-vec", "solana-streamer",