logos-blockchain/logos-execution-zone
1
0
Fork 0
mirror of https://github.com/logos-blockchain/logos-execution-zone.git synced 2026-05-16 21:20:00 +00:00
Code Issues Packages Projects Releases Wiki Activity

test: verify malicious self_program_id is rejected in public execution

Browse Source
This commit is contained in:
moudyellaz 2026-04-02 22:33:34 +02:00
parent 3cfc74695b
commit 1d0c93e9cf
3 changed files with 65 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
nssa/src/program.rs
View File

@ -338,6 +338,13 @@ mod tests {
Self::new(FLASH_SWAP_CALLBACK_ELF.to_vec()) Self::new(FLASH_SWAP_CALLBACK_ELF.to_vec())
.expect("flash_swap_callback must be a valid Risc0 program") .expect("flash_swap_callback must be a valid Risc0 program")
} }
#[must_use]
pub fn malicious_self_program_id() -> Self {
use test_program_methods::MALICIOUS_SELF_PROGRAM_ID_ELF;
Self::new(MALICIOUS_SELF_PROGRAM_ID_ELF.to_vec())
.expect("malicious_self_program_id must be a valid Risc0 program")
}
} }
#[test] #[test]

27
nssa/src/state.rs
View File

@ -384,6 +384,7 @@ pub mod tests {
self.insert_program(Program::validity_window()); self.insert_program(Program::validity_window());
self.insert_program(Program::flash_swap_initiator()); self.insert_program(Program::flash_swap_initiator());
self.insert_program(Program::flash_swap_callback()); self.insert_program(Program::flash_swap_callback());
self.insert_program(Program::malicious_self_program_id());
self self
} }
@ -3714,4 +3715,30 @@ pub mod tests {
"standalone InvariantCheck should be rejected (caller_program_id is None)" "standalone InvariantCheck should be rejected (caller_program_id is None)"
); );
} }
#[test]
fn malicious_self_program_id_rejected_in_public_execution() {
let program = Program::malicious_self_program_id();
let acc_id = AccountId::from(program.id());
let account = Account::default();
let mut state = V03State::new_with_genesis_accounts(&[], &[]).with_test_programs();
state.force_insert_account(acc_id, account);
let message = public_transaction::Message::try_new(
program.id(),
vec![acc_id],
vec![],
(),
)
.unwrap();
let witness_set = public_transaction::WitnessSet::for_message(&message, &[]);
let tx = PublicTransaction::new(message, witness_set);
let result = state.transition_from_public_transaction(&tx, 1, 0);
assert!(
result.is_err(),
"program with wrong self_program_id in output should be rejected"
);
}
} }

31
test_program_methods/guest/src/bin/malicious_self_program_id.rs Normal file
View File

@ -0,0 +1,31 @@
use nssa_core::program::{
AccountPostState, DEFAULT_PROGRAM_ID, ProgramInput, ProgramOutput, read_nssa_inputs,
};
type Instruction = ();
fn main() {
let (
ProgramInput {
self_program_id: _, // ignore the correct ID
caller_program_id: _,
pre_states,
instruction: (),
},
instruction_words,
) = read_nssa_inputs::<Instruction>();
let post_states = pre_states
.iter()
.map(|a| AccountPostState::new(a.account.clone()))
.collect();
// Deliberately output wrong self_program_id
ProgramOutput::new(
DEFAULT_PROGRAM_ID, // WRONG: should be self_program_id
instruction_words,
pre_states,
post_states,
)
.write();
}