Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

safe math for contracts #851

Merged
merged 9 commits into from
Dec 13, 2023
Merged

safe math for contracts #851

merged 9 commits into from
Dec 13, 2023

Conversation

goastler
Copy link
Member

fixes prosopo/captcha-private#504

@pr-explainer-bot PR Explainer Bot
Copy link

Pull Request Review

Hey there! 👋 I've summarized the previous results for you. Here's a markdown document for your pull request review:

Changes

  1. Added use common::Math; in line 6.
  2. Modified the calculation of env_max_user_history_age_seconds in line 28.
  3. Modified the calculation of env_max_user_history_age_blocks in lines 38-43.
  4. Modified the calculation of age_threshold in line 52.
  5. Modified the calculation of summary.score in lines 88-92.
  6. Modified the calculation of before in line 104.
  7. Modified the calculation of next in line 138.

Suggestions

  1. In line 28, instead of using multiple wrapping_mul calls, it would be more readable to use the mul method from the Math module.
  2. In lines 38-43, instead of using Math::add_panic and Math::div_panic separately, it would be more concise to use the add_div_panic method from the Math module.
  3. In lines 88-92, instead of using separate variables for total and correct, it would be clearer to calculate correct directly in the calculation of summary.score.

Bugs

The Math module in common/src/lib.rs could potentially have math errors, such as overflow or division by zero. It would be good to review the implementation of the methods in this module to ensure they handle such cases properly.

Improvements

In the get_max_user_history_age_blocks function in captcha/src/lib.rs, the calculation of env_max_user_history_age_blocks can be refactored for better readability. Instead of using Math::add_panic and Math::div_panic separately, we can use the add_div_panic method from the Math module. Here's the refactored code snippet:

pub fn get_max_user_history_age_blocks(&self) -> u32 {
    let env_max_user_history_age_blocks: u32 = Math::add_div_panic(
        self.get_max_user_history_age_seconds(),
        self.get_block_time() as u32,
        1,
    );
    env_max_user_history_age_blocks
}

Rating

Code Rating: 7/10

Criteria:

  • Readability: The code is generally readable and follows Rust conventions.
  • Performance: The code seems efficient as it uses checked operations to avoid overflow.
  • Security: The code does not raise any immediate concerns, but it would be good to ensure proper error handling and validation of inputs in the calling code.

That's it! Feel free to make any necessary changes based on the feedback. Good luck with your pull request! 🚀

forgetso
forgetso previously approved these changes Nov 27, 2023
View reviewed changes
@goastler goastler enabled auto-merge (squash) December 6, 2023 14:20
@goastler goastler merged commit 84950c7 into main Dec 13, 2023
4 checks passed
@goastler goastler deleted the contract-safe-math branch December 13, 2023 13:24
@goastler goastler mentioned this pull request Dec 13, 2023
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@forgetso forgetso forgetso approved these changes

@HughParry HughParry Awaiting requested review from HughParry HughParry is a code owner

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@goastler @forgetso