Check for overflow in IncrementAccountCounter().

zcash · Apr 8, 2022 · 0da6bce · 0da6bce
1 parent 8750178
commit 0da6bce
Show file tree

Hide file tree

Showing 2 changed files with 16 additions and 4 deletions.
diff --git a/src/wallet/wallet.cpp b/src/wallet/wallet.cpp
@@ -522,7 +522,11 @@ std::pair<UnifiedFullViewingKey, libzcash::AccountId> CWallet::GenerateNewUnifie
     while (true) {
         auto accountId = hdChain.GetAccountCounter();
         auto generated = GenerateUnifiedSpendingKeyForAccount(accountId);
-        hdChain.IncrementAccountCounter();
+        auto account = hdChain.IncrementAccountCounter();
+        if (!account.has_value()) {
+            throw std::runtime_error(
+                    "CWallet::GenerateNewUnifiedSpendingKey(): Account counter overflowed (2^31 - 1).");
+        }
 
         if (generated.has_value()) {
             // Update the persisted chain information

diff --git a/src/wallet/walletdb.h b/src/wallet/walletdb.h
@@ -11,6 +11,7 @@
 #include "key.h"
 #include "keystore.h"
 #include "zcash/Address.hpp"
+#include "zcash/address/zip32.h"
 
 #include <list>
 #include <stdint.h>
@@ -103,9 +104,16 @@ class CHDChain
         return accountCounter;
     }
 
-    void IncrementAccountCounter() {
-        // TODO: We should check for overflow somewhere and handle it.
-        accountCounter += 1;
+    /** Increments the account counter by 1 and returns it. Returns std::nullopt
+     *  if the increment operation would cause an overflow. */
+    std::optional<uint32_t> IncrementAccountCounter() {
+        auto newAccountCounter = accountCounter + 1;
+        if (newAccountCounter > (HARDENED_KEY_LIMIT - 1)) {
+            return std::nullopt;
+        } else {
+            accountCounter = newAccountCounter;
+            return newAccountCounter;
+        }
     }
 
     uint32_t GetLegacyTKeyCounter(bool external) {