cosmos-sdk

History

Emmanuel T Odeke 9f17bc77af baseapp, client: reject gRPC connections with out-of-range/nefarious x-cosmos-block-height values (#7663 ) * baseapp, client: reject gRPC connections with out-of-range/nefarious x-cosmos-block-height values Rejects gRPC connections that send out-of-range x-cosmos-block-height values that previously weren't checked for. We now reject any negative values and any value greater than max(int64) aka >9223372036854775807. Also added an enforcement for returning an error if any negative heights are passed into (BaseApp).createQueryContext. Fixes #7662 baseapp, client: reject gRPC connections with out-of-range/nefarious x-cosmos-block-height values Rejects gRPC connections that send out-of-range x-cosmos-block-height values that previously weren't checked for. We now reject any negative values and any value greater than max(int64) aka >9223372036854775807. Also added an enforcement for returning an error if any negative heights are passed into (BaseApp).createQueryContext. Fixes #7662 Address Robert's feedback to extract negative height checker * Fix tests Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>	2020-11-03 18:35:22 +00:00
..
server.go	Add GRPCBlockHeightHeader in clientCtx gRPC requests (#7021 )	2020-08-12 14:42:10 +00:00
server_test.go	baseapp, client: reject gRPC connections with out-of-range/nefarious x-cosmos-block-height values (#7663 )	2020-11-03 18:35:22 +00:00

baseapp, client: reject gRPC connections with out-of-range/nefarious x-cosmos-block-height values (#7663 )

* baseapp, client: reject gRPC connections with out-of-range/nefarious x-cosmos-block-height values

Rejects gRPC connections that send out-of-range x-cosmos-block-height
values that previously weren't checked for. We now reject any negative
values and any value greater than max(int64) aka >9223372036854775807.

Also added an enforcement for returning an error if any negative heights
are passed into (*BaseApp).createQueryContext.

Fixes #7662

* baseapp, client: reject gRPC connections with out-of-range/nefarious x-cosmos-block-height values

Rejects gRPC connections that send out-of-range x-cosmos-block-height
values that previously weren't checked for. We now reject any negative
values and any value greater than max(int64) aka >9223372036854775807.

Also added an enforcement for returning an error if any negative heights
are passed into (*BaseApp).createQueryContext.

Fixes #7662

* Address Robert's feedback to extract negative height checker

* Fix tests

Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com>

2020-11-03 18:35:22 +00:00

server.go

Add GRPCBlockHeightHeader in clientCtx gRPC requests (#7021 )

2020-08-12 14:42:10 +00:00

server_test.go

baseapp, client: reject gRPC connections with out-of-range/nefarious x-cosmos-block-height values (#7663 )

2020-11-03 18:35:22 +00:00