From 33589401ba7df5495a2e57c6c4edd113dff3bd8b Mon Sep 17 00:00:00 2001
From: Jack Grigg <jack@z.cash>
Date: Fri, 24 Mar 2017 16:05:32 +1300
Subject: [PATCH] Require that z_importkey height parameter be in valid range

---
 src/test/rpc_wallet_tests.cpp | 8 ++++++++
 src/wallet/rpcdump.cpp        | 3 +++
 2 files changed, 11 insertions(+)

diff --git a/src/test/rpc_wallet_tests.cpp b/src/test/rpc_wallet_tests.cpp
index 5529b864b..b25e0e234 100644
--- a/src/test/rpc_wallet_tests.cpp
+++ b/src/test/rpc_wallet_tests.cpp
@@ -503,6 +503,14 @@ BOOST_AUTO_TEST_CASE(rpc_wallet_z_importexport)
     BOOST_CHECK_THROW(CallRPC("z_importkey way too many args"), runtime_error);
     BOOST_CHECK_THROW(CallRPC("z_exportkey toomany args"), runtime_error);
 
+    // error if invalid args
+    auto sk = libzcash::SpendingKey::random();
+    std::string prefix = std::string("z_importkey ") + CZCSpendingKey(sk).ToString() + " yes ";
+    BOOST_CHECK_THROW(CallRPC(prefix + "-1"), runtime_error);
+    BOOST_CHECK_THROW(CallRPC(prefix + "2147483647"), runtime_error); // allowed, but > height of active chain tip
+    BOOST_CHECK_THROW(CallRPC(prefix + "2147483648"), runtime_error); // not allowed, > int32 used for nHeight
+    BOOST_CHECK_THROW(CallRPC(prefix + "100badchars"), runtime_error);
+
     // wallet should currently be empty
     std::set<libzcash::PaymentAddress> addrs;
     pwalletMain->GetPaymentAddresses(addrs);
diff --git a/src/wallet/rpcdump.cpp b/src/wallet/rpcdump.cpp
index c9b3504ed..936532837 100644
--- a/src/wallet/rpcdump.cpp
+++ b/src/wallet/rpcdump.cpp
@@ -607,6 +607,9 @@ UniValue z_importkey(const UniValue& params, bool fHelp)
     int nRescanHeight = 0;
     if (params.size() > 2)
         nRescanHeight = params[2].get_int();
+    if (nRescanHeight < 0 || nRescanHeight > chainActive.Height()) {
+        throw JSONRPCError(RPC_INVALID_PARAMETER, "Block height out of range");
+    }
 
     string strSecret = params[0].get_str();
     CZCSpendingKey spendingkey(strSecret);