Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Serious Bug: BN.js incorrectly computes hexsting #3017

Closed
ricmoo opened this issue May 24, 2022 · 3 comments
Closed

Serious Bug: BN.js incorrectly computes hexsting #3017

ricmoo opened this issue May 24, 2022 · 3 comments
Assignees
@ricmoo
Labels
bug Verified to be an issue. fixed/complete This Bug is fixed or Enhancement is complete and published.

Comments

@ricmoo
Copy link
Member

ricmoo commented May 24, 2022

Ethers Version

5.6.7

Search Terms

No response

Describe the Problem

There was a serious bug identified in BN.js, which results in hex strings being incorrectly computed in some cases (analysis will be performed shortly, after I get the CI off and running).

The hexstring is used extensively in ethers v5 BigNumber library, to ensure immutability. This does not affect the v6-beta branch, as it does not use BN.js.

There is a fix published in that repository, so I just need to update the version, verify correctness, and lock the versions in the package.json files.

h/t: @alexdupre

Code Snippet

// Two numbers, which *should* be different:
const a = BigNumber.from(2).pow(336);
const b = BigNumber.from(2).pow(316);

// Should log `false`, but actually logs `true`
console.log(a.eq(b))

Contract ABI

No response

Errors

No response

Environment

No response

Environment (Other)

No response
@ricmoo ricmoo added bug Verified to be an issue. on-deck This Enhancement or Bug is currently being worked on. labels May 24, 2022
@ricmoo ricmoo self-assigned this May 24, 2022
ricmoo added a commit that referenced this issue May 24, 2022
@ricmoo
Bump BN.js for hexstring bug fix (#3017).
30b716b
ricmoo added a commit that referenced this issue May 24, 2022
@ricmoo
Lock versions for BigNumber fix (#3017).
a27ef82
@ricmoo ricmoo added fixed/complete This Bug is fixed or Enhancement is complete and published. and removed on-deck This Enhancement or Bug is currently being worked on. labels May 24, 2022
@ricmoo
Copy link
Member Author

ricmoo commented May 25, 2022

I believe this problem should not have affected most normal uses of the BigNumber class, since the smallest number affected seems to be 2 ** 336, which is a 337-bit number, while Ethereum operations would generally only operate with numbers up to 256-bit numbers.

It is possible for arbitrary math operations to have been performed outside of this range, but that still leaves a buffer of 80 bits, and even this scenario seems unlikely.

Any additional analysis or comments from others is welcome though. :)

@alexdupre
Copy link

It's true that the smallest affected number is bigger than 2^256, and that's likely the reason it wasn't discovered before, but that's something that can be reached with simple operations on uint256 numbers that may have a wide intermediate result, e.g. in the case r = a * b / c where a, b, c and the result are uint256, but a * b overflows it. Same with a modulo operation instead of division. Surely not very common, but also not impossible (especially if exploited voluntarily).

@ricmoo
Copy link
Member Author

ricmoo commented May 25, 2022

Yes, I 100% agree that accumulation could hit that limit, especially, things like averages over large numbers of values. But it is certainly rarer than my initial panic led me to believe. :)

@usame-algan usame-algan mentioned this issue May 25, 2022
Merged
@platschi platschi mentioned this issue May 25, 2022
Closed
@brightiron brightiron mentioned this issue May 25, 2022
Merged
@ricmoo ricmoo closed this as completed May 26, 2022
@dimsome dimsome mentioned this issue May 26, 2022
Closed
@0xSulpiride 0xSulpiride mentioned this issue Jun 1, 2022
Merged
@bit2world bit2world mentioned this issue Jun 3, 2022
Merged
@earizon earizon mentioned this issue Nov 26, 2022
Closed
1 task
legobeat added a commit to legobeat/ethjs-abi that referenced this issue Jan 10, 2023
@legobeat
deps: bn.js@4.11.6->5.2.1
e713e75 
Fixes correctness bug for .toString(16):

indutny/bn.js#295
ethers-io/ethers.js#3017
This was referenced Jan 10, 2023
Open
Merged
legobeat added a commit to legobt/ethjs-abi that referenced this issue Jan 10, 2023
@legobeat
deps: bn.js@4.11.6->5.2.1
1e15d9a 
Fixes correctness bug for .toString(16):

indutny/bn.js#295
ethers-io/ethers.js#3017
Woodpile37 pushed a commit to Woodpile37/ethers.js that referenced this issue Jan 14, 2024
@ricmoo @Woodpile37
Bump BN.js for hexstring bug fix (ethers-io#3017).
aac6f60
Woodpile37 pushed a commit to Woodpile37/ethers.js that referenced this issue Jan 14, 2024
@ricmoo @Woodpile37
Lock versions for BigNumber fix (ethers-io#3017).
40d13fd
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@ricmoo ricmoo

Labels
bug Verified to be an issue. fixed/complete This Bug is fixed or Enhancement is complete and published.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@ricmoo @alexdupre