1. 01 May, 2018 1 commit
    • Alessandro Sorniotti's avatar
      [FAB-6381] Secure defaults for txsFilter · 53de0781
      Alessandro Sorniotti authored
      
      
      The aim of this change set is to apply the well-established "Secure by
      default" security principle to the way the validator validates transactions
      in a block.
      
      The current code behaves as follows: create an array of validation codes, set
      by default to "all transactions are valid"; then perform validation which may
      mark transactions as invalid. Furthermore, in other parts of the code, if no
      array of validation codes is yet persent in the block, a new one is
      indiscriminately created (again, marking all transactions as valid). This
      approach is a security anti-pattern because it opens up to attacks where an
      adversary may force the code through a path where the default "tx is valid"
      validation code is maintained even for invalid txes.
      
      This change set ensures that validation code arrays are created and set to a
      new value (TxValidationCode_NOT_VALIDATED) which ensures that a transaction
      that hasn't been validated cannot be mistaken for a valid one.
      
      Change-Id: I5dbb18dd77af3cd14b168042ae660e4e27bf29dd
      Signed-off-by: default avatarAlessandro Sorniotti <ale.linux@sopit.net>
      53de0781
  2. 30 Apr, 2018 4 commits
  3. 29 Apr, 2018 2 commits
  4. 28 Apr, 2018 1 commit
    • senthil's avatar
      [FAB-9204] new proto for transient store entry · bbac03ca
      senthil authored
      
      
      In the current code, the transient store persists rwset.TxPvtReadWriteSet
      as a value. This CR defines a new proto message in the `transientstore`
      package named `TxPvtReadWriteSetWithConfigInfo` which encapsulates
      rwset.TxPvtReadWriteSet and common.CollectionConfigPackage
      
      Gossip will utilize this new proto message while supporting
      dissemination with dynamic collections.
      
      Change-Id: Ia178d27fba185ea620818a056c43dc575880a7a0
      Signed-off-by: default avatarsenthil <cendhu@gmail.com>
      bbac03ca
  5. 27 Apr, 2018 19 commits
  6. 26 Apr, 2018 13 commits