x/gov/simulation: NewDecodeStore unmarshals wrong proposal due to typo in value source #8570
Closed
4 tasks done
Assignees
Comments
odeke-em
added a commit
that referenced
this issue
Feb 17, 2021
… tests The code in NewDecodeStore decoded the wrong proposal due to a typographical error, but the tests used the exact same value for the key value pairs hence the typo could never be caught. I noticed it during an audit of the code, and I've fixed the tests to pass in varying values for the various key value pairs. Fixes #8570
9 tasks
odeke-em
added a commit
that referenced
this issue
Feb 17, 2021
… tests (#8603) The code in NewDecodeStore decoded the wrong proposal due to a typographical error, but the tests used the exact same value for the key value pairs hence the typo could never be caught. I noticed it during an audit of the code, and I've fixed the tests to pass in varying values for the various key value pairs. Fixes #8570 Co-authored-by: Alessio Treglia <alessio@tendermint.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Summary of Bug
Noticed while auditing, see this code
cosmos-sdk/x/gov/simulation/decoder.go
Lines 19 to 25 in ab24d0e
notice that both ProposalA and ProposalB unmarshal from kvA.Value?
shouldn’t that use kvB.Value? Looks like a typo from PR #6147 from May 2020.
We shall also need to improve the tests to catch such bugs, given that that code has been in for 9 months without any tests catching it, shows we need to tighten the test.
For Admin Use
The text was updated successfully, but these errors were encountered: