Skip to content

Add validation and tests for discriminant_size_bits parameter #286

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
emlowe merged 5 commits into from
Dec 18, 2025
Merged

Add validation and tests for discriminant_size_bits parameter #286

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
5 commits
Select commit Hold shift + click to select a range
3f7f268
Add validation and tests for discriminant_size_bits parameter
hoffmang9 Dec 14, 2025
21fa8dd
Of course I need to flake8
hoffmang9 Dec 14, 2025
20b3c5b
CreateDiscriminant should have a return()
hoffmang9 Dec 14, 2025
0c54df4
Don't change where we drop the GIL
hoffmang9 Dec 15, 2025
f5abd89
Don't let Claude sneak a whole new function in
hoffmang9 Dec 15, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
31 changes: 31 additions & 0 deletions src/create_discriminant.h
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -4,6 +4,37 @@
#include "proof_common.h"

integer CreateDiscriminant(std::vector<uint8_t>& seed, int length = 1024) {
// INPUT VALIDATION - Fix for issue #282

// Check 1: Validate discriminant_size_bits is positive
if (length <= 0) {
throw std::invalid_argument(
"discriminant_size_bits must be positive (got " +
std::to_string(length) + ")"
);
}

// Check 2: Validate upper bound (optional but recommended)
const int MAX_DISCRIMINANT_SIZE_BITS = 16384;
if (length > MAX_DISCRIMINANT_SIZE_BITS) {
throw std::invalid_argument(
"discriminant_size_bits exceeds maximum allowed value"
);
}

// Check 3: Validate that length is a multiple of 8 (required by HashPrime)
if (length % 8 != 0) {
throw std::invalid_argument(
"discriminant_size_bits must be a multiple of 8 (got " +
std::to_string(length) + ")"
);
}

// Check 4: Validate seed is not empty
if (seed.empty()) {
throw std::invalid_argument("seed cannot be empty");
}

return HashPrime(seed, length, {0, 1, 2, length - 1}) * integer(-1);
}

Expand Down
34 changes: 34 additions & 0 deletions tests/test_discriminant_validation.py
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,34 @@
import secrets
import pytest

from chiavdf import create_discriminant


def test_discriminant_size_bits_negative():
"""Test that discriminant_size_bits of -1 fails"""
discriminant_challenge = secrets.token_bytes(10)
with pytest.raises(ValueError, match="discriminant_size_bits must be positive"):
create_discriminant(discriminant_challenge, -1)


def test_discriminant_size_bits_zero():
"""Test that discriminant_size_bits of 0 fails"""
discriminant_challenge = secrets.token_bytes(10)
with pytest.raises(ValueError, match="discriminant_size_bits must be positive"):
create_discriminant(discriminant_challenge, 0)


def test_discriminant_size_bits_too_large():
"""Test that discriminant_size_bits of 16400 fails (exceeds max of 16384)"""
discriminant_challenge = secrets.token_bytes(10)
with pytest.raises(ValueError, match="discriminant_size_bits exceeds maximum allowed value"):
create_discriminant(discriminant_challenge, 16400)


def test_discriminant_size_bits_valid():
"""Test that discriminant_size_bits of 1024 succeeds"""
discriminant_challenge = secrets.token_bytes(10)
discriminant = create_discriminant(discriminant_challenge, 1024)
# If we get here without an exception, the test passes
assert discriminant is not None
assert len(discriminant) > 0 # Should return a string representation of the discriminant
Loading