Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Using the structure defined by Protocol Buffers, input checking of string fields is required in the use of the algorithm #5

Open
joyoFeng opened this issue Apr 28, 2023 · 0 comments
Open

Using the structure defined by Protocol Buffers, input checking of string fields is required in the use of the algorithm #5

joyoFeng opened this issue Apr 28, 2023 · 0 comments

Comments

@joyoFeng
Copy link

joyoFeng commented Apr 28, 2023
edited
Loading

The algorithmic protocol data structure of the code repository uses Protocol Buffers definition,
which requires input checking for malicious inputs, such as over-long input string,
due to the extensive use of string-defined fields, which may lead to risky problems
such as resource overload, buffer overflow, and even system crash of the counterpart parties.

In fact, the message length can be calculated during MPC calculation (most of them are determined in advance), and different protocol implementations can be customized with corresponding input limits (From PlatON Cryptography Team).
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@joyoFeng