aboutsummaryrefslogtreecommitdiff
path: root/src/cryptonote_core
diff options
context:
space:
mode:
authormoneromooo-monero <moneromooo-monero@users.noreply.github.com>2018-03-31 10:49:53 +0100
committermoneromooo-monero <moneromooo-monero@users.noreply.github.com>2018-09-11 13:37:39 +0000
commitc444b1b22922b423256c6d15887a27e77d060d7f (patch)
tree12f8b12ff7981befbde1173be6985137ad1eb292 /src/cryptonote_core
parentAdd a define for the max number of bulletproof multi-outputs (diff)
downloadmonero-c444b1b22922b423256c6d15887a27e77d060d7f.tar.xz
require canonical multi output bulletproof layout
Diffstat (limited to 'src/cryptonote_core')
-rw-r--r--src/cryptonote_core/cryptonote_core.cpp29
1 files changed, 29 insertions, 0 deletions
diff --git a/src/cryptonote_core/cryptonote_core.cpp b/src/cryptonote_core/cryptonote_core.cpp
index f1a666814..f9e0b68d0 100644
--- a/src/cryptonote_core/cryptonote_core.cpp
+++ b/src/cryptonote_core/cryptonote_core.cpp
@@ -745,6 +745,25 @@ namespace cryptonote
bad_semantics_txes_lock.unlock();
}
//-----------------------------------------------------------------------------------------------
+ static bool is_canonical_bulletproof_layout(const std::vector<rct::Bulletproof> &proofs)
+ {
+ size_t n_amounts = rct::n_bulletproof_amounts(proofs), amounts_proved = 0;
+ size_t n = 0;
+ while (amounts_proved < n_amounts)
+ {
+ if (n >= proofs.size())
+ return false;
+ size_t batch_size = 1;
+ while (batch_size * 2 + amounts_proved <= n_amounts && batch_size * 2 <= BULLETPROOF_MAX_OUTPUTS)
+ batch_size *= 2;
+ if (rct::n_bulletproof_amounts(proofs[n]) != batch_size)
+ return false;
+ amounts_proved += batch_size;
+ ++n;
+ }
+ return true;
+ }
+ //-----------------------------------------------------------------------------------------------
bool core::handle_incoming_tx_accumulated_batch(std::vector<tx_verification_batch_info> &tx_info, bool keeped_by_block)
{
bool ret = true;
@@ -797,6 +816,16 @@ namespace cryptonote
}
break;
case rct::RCTTypeBulletproof:
+ // in addition to valid bulletproofs, we want multi-out
+ // proofs to be in decreasing power of 2 constituents
+ if (!is_canonical_bulletproof_layout(rv.p.bulletproofs))
+ {
+ MERROR_VER("Bulletproof does not use decreasing power of 2 rule");
+ set_semantics_failed(tx_info[n].tx_hash);
+ tx_info[n].tvc.m_verifivation_failed = true;
+ tx_info[n].result = false;
+ break;
+ }
rvv.push_back(&rv); // delayed batch verification
break;
default: