cosmos
diff --git a/‎programs/solana/programs/ics07-tendermint/src/error.rs‎
Lines changed: 4 additions & 0 deletions b/‎programs/solana/programs/ics07-tendermint/src/error.rs‎
Lines changed: 4 additions & 0 deletions
diff --git a/‎programs/solana/programs/ics07-tendermint/src/instructions/assemble_and_submit_misbehaviour.rs‎
Lines changed: 25 additions & 7 deletions b/‎programs/solana/programs/ics07-tendermint/src/instructions/assemble_and_submit_misbehaviour.rs‎
Lines changed: 25 additions & 7 deletions
diff --git a/‎programs/solana/programs/ics07-tendermint/src/instructions/assemble_and_update_client.rs‎
Lines changed: 40 additions & 43 deletions b/‎programs/solana/programs/ics07-tendermint/src/instructions/assemble_and_update_client.rs‎
Lines changed: 40 additions & 43 deletions
diff --git a/‎programs/solana/programs/ics07-tendermint/src/instructions/cleanup_incomplete_misbehaviour.rs‎
Lines changed: 3 additions & 1 deletion b/‎programs/solana/programs/ics07-tendermint/src/instructions/cleanup_incomplete_misbehaviour.rs‎
Lines changed: 3 additions & 1 deletion
diff --git a/‎programs/solana/programs/ics07-tendermint/src/instructions/cleanup_incomplete_upload.rs‎
Lines changed: 3 additions & 1 deletion b/‎programs/solana/programs/ics07-tendermint/src/instructions/cleanup_incomplete_upload.rs‎
Lines changed: 3 additions & 1 deletion
diff --git a/‎programs/solana/programs/ics26-router/src/errors.rs‎
Lines changed: 3 additions & 0 deletions b/‎programs/solana/programs/ics26-router/src/errors.rs‎
Lines changed: 3 additions & 0 deletions
diff --git a/‎programs/solana/programs/ics26-router/src/instructions/ack_packet.rs‎
Lines changed: 12 additions & 8 deletions b/‎programs/solana/programs/ics26-router/src/instructions/ack_packet.rs‎
Lines changed: 12 additions & 8 deletions
diff --git a/‎programs/solana/programs/ics26-router/src/instructions/add_ibc_app.rs‎
Lines changed: 3 additions & 2 deletions b/‎programs/solana/programs/ics26-router/src/instructions/add_ibc_app.rs‎
Lines changed: 3 additions & 2 deletions
diff --git a/‎programs/solana/programs/ics26-router/src/instructions/cleanup_chunks.rs‎
Lines changed: 18 additions & 6 deletions b/‎programs/solana/programs/ics26-router/src/instructions/cleanup_chunks.rs‎
Lines changed: 18 additions & 6 deletions
diff --git a/‎programs/solana/programs/ics26-router/src/instructions/recv_packet.rs‎
Lines changed: 12 additions & 8 deletions b/‎programs/solana/programs/ics26-router/src/instructions/recv_packet.rs‎
Lines changed: 12 additions & 8 deletions
@@ -71,4 +71,8 @@ pub enum ErrorCode {
     SerializationError,
     #[msg("Account validation failed: invalid account or PDA")]
     AccountValidationFailed,
+    #[msg("Invalid account owner: account is not owned by the expected program")]
+    InvalidAccountOwner,
+    #[msg("Arithmetic overflow detected")]
+    ArithmeticOverflow,
 }
@@ -60,13 +60,20 @@ fn validate_and_load_chunk(
         &[index],
     ];
     let (expected_pda, _) = Pubkey::find_program_address(expected_seeds, &crate::ID);
-    require_eq!(
+    require_keys_eq!(
         chunk_account.key(),
         expected_pda,
         ErrorCode::InvalidChunkAccount
     );
 
+    require_keys_eq!(
+        *chunk_account.owner,
+        crate::ID,
+        ErrorCode::InvalidAccountOwner
+    );
+
     let chunk_data = chunk_account.try_borrow_data()?;
+
     let chunk: MisbehaviourChunk = MisbehaviourChunk::try_deserialize(&mut &chunk_data[..])?;
 
     misbehaviour_bytes.extend_from_slice(&chunk.chunk_data);
@@ -106,12 +113,15 @@ fn process_misbehaviour(
     )
     .map_err(|_| error!(ErrorCode::MisbehaviourCheckFailed))?;
 
-    require!(
-        ctx.accounts.trusted_consensus_state_1.height == output.trusted_height_1.revision_height(),
+    require_eq!(
+        ctx.accounts.trusted_consensus_state_1.height,
+        output.trusted_height_1.revision_height(),
         ErrorCode::HeightMismatch
     );
-    require!(
-        ctx.accounts.trusted_consensus_state_2.height == output.trusted_height_2.revision_height(),
+
+    require_eq!(
+        ctx.accounts.trusted_consensus_state_2.height,
+        output.trusted_height_2.revision_height(),
         ErrorCode::HeightMismatch
     );
 
@@ -140,19 +150,27 @@ fn cleanup_chunks(
             &[index as u8],
         ];
         let (expected_pda, _) = Pubkey::find_program_address(expected_seeds, &crate::ID);
-        require_eq!(
+        require_keys_eq!(
             chunk_account.key(),
             expected_pda,
             ErrorCode::InvalidChunkAccount
         );
 
+        require_keys_eq!(
+            *chunk_account.owner,
+            crate::ID,
+            ErrorCode::InvalidAccountOwner
+        );
+
         let mut data = chunk_account.try_borrow_mut_data()?;
         data.fill(0);
 
         let mut lamports = chunk_account.try_borrow_mut_lamports()?;
         let mut submitter_lamports = ctx.accounts.submitter.try_borrow_mut_lamports()?;
 
-        **submitter_lamports += **lamports;
+        **submitter_lamports = submitter_lamports
+            .checked_add(**lamports)
+            .ok_or(ErrorCode::ArithmeticOverflow)?;
         **lamports = 0;
     }
     Ok(())
 
@@ -42,47 +42,34 @@ fn assemble_chunks(
     let mut header_bytes = Vec::new();
 
     for (index, chunk_account) in ctx.remaining_accounts.iter().enumerate() {
-        validate_and_load_chunk(
-            chunk_account,
-            chain_id,
-            target_height,
-            submitter,
-            index as u8,
-            &mut header_bytes,
-        )?;
-    }
+        let expected_seeds = &[
+            crate::state::HeaderChunk::SEED,
+            submitter.as_ref(),
+            chain_id.as_bytes(),
+            &target_height.to_le_bytes(),
+            &[index as u8],
+        ];
+        let (expected_pda, _) = Pubkey::find_program_address(expected_seeds, &crate::ID);
+        require_keys_eq!(
+            chunk_account.key(),
+            expected_pda,
+            ErrorCode::InvalidChunkAccount
+        );
 
-    Ok(header_bytes)
-}
+        require_keys_eq!(
+            *chunk_account.owner,
+            crate::ID,
+            ErrorCode::InvalidAccountOwner
+        );
 
-fn validate_and_load_chunk(
-    chunk_account: &AccountInfo,
-    chain_id: &str,
-    target_height: u64,
-    submitter: Pubkey,
-    index: u8,
-    header_bytes: &mut Vec<u8>,
-) -> Result<()> {
-    // Validate chunk PDA
-    let expected_seeds = &[
-        crate::state::HeaderChunk::SEED,
-        submitter.as_ref(),
-        chain_id.as_bytes(),
-        &target_height.to_le_bytes(),
-        &[index],
-    ];
-    let (expected_pda, _) = Pubkey::find_program_address(expected_seeds, &crate::ID);
-    require_eq!(
-        chunk_account.key(),
-        expected_pda,
-        ErrorCode::InvalidChunkAccount
-    );
+        let chunk_data = chunk_account.try_borrow_data()?;
 
-    let chunk_data = chunk_account.try_borrow_data()?;
-    let chunk: HeaderChunk = HeaderChunk::try_deserialize(&mut &chunk_data[..])?;
+        let chunk: HeaderChunk = HeaderChunk::try_deserialize(&mut &chunk_data[..])?;
 
-    header_bytes.extend_from_slice(&chunk.chunk_data);
-    Ok(())
+        header_bytes.extend_from_slice(&chunk.chunk_data);
+    }
+
+    Ok(header_bytes)
 }
 
 fn process_header_update(
@@ -176,19 +163,27 @@ fn cleanup_chunks(
             &[index as u8],
         ];
         let (expected_pda, _) = Pubkey::find_program_address(expected_seeds, &crate::ID);
-        require_eq!(
+        require_keys_eq!(
             chunk_account.key(),
             expected_pda,
             ErrorCode::InvalidChunkAccount
         );
 
+        require_keys_eq!(
+            *chunk_account.owner,
+            crate::ID,
+            ErrorCode::InvalidAccountOwner
+        );
+
         let mut data = chunk_account.try_borrow_mut_data()?;
         data.fill(0);
 
         let mut lamports = chunk_account.try_borrow_mut_lamports()?;
         let mut submitter_lamports = ctx.accounts.submitter.try_borrow_mut_lamports()?;
 
-        **submitter_lamports += **lamports;
+        **submitter_lamports = submitter_lamports
+            .checked_add(**lamports)
+            .ok_or(ErrorCode::ArithmeticOverflow)?;
         **lamports = 0;
     }
     Ok(())
@@ -210,8 +205,9 @@ fn load_consensus_state(
         &crate::ID,
     );
 
-    require!(
-        expected_pda == account.key(),
+    require_keys_eq!(
+        account.key(),
+        expected_pda,
         ErrorCode::AccountValidationFailed
     );
 
@@ -244,8 +240,9 @@ fn store_consensus_state(params: StoreConsensusStateParams) -> Result<UpdateResu
         &crate::ID,
     );
 
-    require!(
-        expected_pda == params.account.key(),
+    require_keys_eq!(
+        expected_pda,
+        params.account.key(),
         ErrorCode::AccountValidationFailed
     );
 
 
@@ -28,7 +28,9 @@ pub fn cleanup_incomplete_misbehaviour(
             let mut lamports = chunk_account.try_borrow_mut_lamports()?;
             let mut submitter_lamports =
                 ctx.accounts.submitter_account.try_borrow_mut_lamports()?;
-            **submitter_lamports += **lamports;
+            **submitter_lamports = submitter_lamports
+                .checked_add(**lamports)
+                .ok_or(crate::error::ErrorCode::ArithmeticOverflow)?;
             **lamports = 0;
         }
     }
 
@@ -39,7 +39,9 @@ pub fn cleanup_incomplete_upload(
             let mut lamports = chunk_account.try_borrow_mut_lamports()?;
             let mut submitter_lamports =
                 ctx.accounts.submitter_account.try_borrow_mut_lamports()?;
-            **submitter_lamports += **lamports;
+            **submitter_lamports = submitter_lamports
+                .checked_add(**lamports)
+                .ok_or(crate::error::ErrorCode::ArithmeticOverflow)?;
             **lamports = 0;
         }
         // If account doesn't exist or isn't owned by us, skip it
 
@@ -78,6 +78,9 @@ pub enum RouterError {
 
     #[msg("Direct calls not allowed, must be called via CPI")]
     DirectCallNotAllowed,
+
+    #[msg("Invalid account owner: account is not owned by the expected program")]
+    InvalidAccountOwner,
 }
 
 /// Convert CPI validation errors to Router errors
 
@@ -87,18 +87,21 @@ pub fn ack_packet<'info>(
     let packet_commitment_account = &ctx.accounts.packet_commitment;
     let client = &ctx.accounts.client;
 
-    require!(
-        ctx.accounts.relayer.key() == router_state.authority,
+    require_keys_eq!(
+        ctx.accounts.relayer.key(),
+        router_state.authority,
         RouterError::UnauthorizedSender
     );
 
-    require!(
-        msg.packet.source_client == client.client_id,
+    require_eq!(
+        &msg.packet.source_client,
+        &client.client_id,
         RouterError::ClientMismatch
     );
 
-    require!(
-        msg.packet.dest_client == client.counterparty_info.client_id,
+    require_eq!(
+        &msg.packet.dest_client,
+        &client.counterparty_info.client_id,
         RouterError::InvalidCounterpartyClient
     );
 
@@ -116,8 +119,9 @@ pub fn ack_packet<'info>(
     let (expected_ibc_app, _) =
         Pubkey::find_program_address(&[IBCApp::SEED, payload.source_port.as_bytes()], &crate::ID);
 
-    require!(
-        ctx.accounts.ibc_app.key() == expected_ibc_app,
+    require_keys_eq!(
+        ctx.accounts.ibc_app.key(),
+        expected_ibc_app,
         RouterError::IbcAppNotFound
     );
 
 
@@ -37,8 +37,9 @@ pub fn add_ibc_app(ctx: Context<AddIbcApp>, port_id: String) -> Result<()> {
     let router_state = &ctx.accounts.router_state;
     let ibc_app = &mut ctx.accounts.ibc_app;
 
-    require!(
-        ctx.accounts.authority.key() == router_state.authority,
+    require_keys_eq!(
+        ctx.accounts.authority.key(),
+        router_state.authority,
         RouterError::UnauthorizedSender
     );
 
 
@@ -27,7 +27,6 @@ pub fn cleanup_chunks<'info>(
 
             let chunk_account = &ctx.remaining_accounts[chunk_index];
 
-            // Verify the PDA is correct
             let expected_seeds = &[
                 PayloadChunk::SEED,
                 relayer_key.as_ref(),
@@ -38,11 +37,18 @@ pub fn cleanup_chunks<'info>(
             ];
             let (expected_pda, _) = Pubkey::find_program_address(expected_seeds, &crate::ID);
 
-            require!(
-                chunk_account.key() == expected_pda,
+            require_keys_eq!(
+                chunk_account.key(),
+                expected_pda,
                 RouterError::InvalidChunkAccount
             );
 
+            require_keys_eq!(
+                *chunk_account.owner,
+                crate::ID,
+                RouterError::InvalidAccountOwner
+            );
+
             // Return rent to relayer
             cleanup_single_chunk(chunk_account, &ctx.accounts.relayer)?;
             chunk_index += 1;
@@ -58,7 +64,6 @@ pub fn cleanup_chunks<'info>(
 
         let chunk_account = &ctx.remaining_accounts[chunk_index];
 
-        // Verify the PDA is correct
         let expected_seeds = &[
             ProofChunk::SEED,
             relayer_key.as_ref(),
@@ -68,11 +73,18 @@ pub fn cleanup_chunks<'info>(
         ];
         let (expected_pda, _) = Pubkey::find_program_address(expected_seeds, &crate::ID);
 
-        require!(
-            chunk_account.key() == expected_pda,
+        require_keys_eq!(
+            chunk_account.key(),
+            expected_pda,
             RouterError::InvalidChunkAccount
         );
 
+        require_keys_eq!(
+            *chunk_account.owner,
+            crate::ID,
+            RouterError::InvalidAccountOwner
+        );
+
         // Return rent to relayer
         cleanup_single_chunk(chunk_account, &ctx.accounts.relayer)?;
         chunk_index += 1;
 
@@ -108,18 +108,21 @@ pub fn recv_packet<'info>(
     // Get clock directly via syscall
     let clock = Clock::get()?;
 
-    require!(
-        ctx.accounts.relayer.key() == router_state.authority,
+    require_keys_eq!(
+        ctx.accounts.relayer.key(),
+        router_state.authority,
         RouterError::UnauthorizedSender
     );
 
-    require!(
-        msg.packet.source_client == client.counterparty_info.client_id,
+    require_eq!(
+        &msg.packet.source_client,
+        &client.counterparty_info.client_id,
         RouterError::InvalidCounterpartyClient
     );
 
-    require!(
-        msg.packet.dest_client == client.client_id,
+    require_eq!(
+        &msg.packet.dest_client,
+        &client.client_id,
         RouterError::ClientMismatch
     );
 
@@ -143,8 +146,9 @@ pub fn recv_packet<'info>(
     let (expected_ibc_app, _) =
         Pubkey::find_program_address(&[IBCApp::SEED, payload.dest_port.as_bytes()], &crate::ID);
 
-    require!(
-        ctx.accounts.ibc_app.key() == expected_ibc_app,
+    require_keys_eq!(
+        ctx.accounts.ibc_app.key(),
+        expected_ibc_app,
         RouterError::IbcAppNotFound
     );
Original file line number	Diff line number	Diff line change
`@@ -71,4 +71,8 @@ pub enum ErrorCode {`
`71`	`71`	`SerializationError,`
`72`	`72`	`#[msg("Account validation failed: invalid account or PDA")]`
`73`	`73`	`AccountValidationFailed,`
	`74`	`+ #[msg("Invalid account owner: account is not owned by the expected program")]`
	`75`	`+ InvalidAccountOwner,`
	`76`	`+ #[msg("Arithmetic overflow detected")]`
	`77`	`+ ArithmeticOverflow,`
`74`	`78`	`}`
Original file line number	Diff line number	Diff line change
`@@ -28,7 +28,9 @@ pub fn cleanup_incomplete_misbehaviour(`
`28`	`28`	`let mut lamports = chunk_account.try_borrow_mut_lamports()?;`
`29`	`29`	`let mut submitter_lamports =`
`30`	`30`	`ctx.accounts.submitter_account.try_borrow_mut_lamports()?;`
`31`		`- submitter_lamports += lamports;`
	`31`	`+ **submitter_lamports = submitter_lamports`
	`32`	`+ .checked_add(**lamports)`
	`33`	`+ .ok_or(crate::error::ErrorCode::ArithmeticOverflow)?;`
`32`	`34`	`**lamports = 0;`
`33`	`35`	`}`
`34`	`36`	`}`
Original file line number	Diff line number	Diff line change
`@@ -78,6 +78,9 @@ pub enum RouterError {`
`78`	`78`
`79`	`79`	`#[msg("Direct calls not allowed, must be called via CPI")]`
`80`	`80`	`DirectCallNotAllowed,`
	`81`	`+`
	`82`	`+ #[msg("Invalid account owner: account is not owned by the expected program")]`
	`83`	`+ InvalidAccountOwner,`
`81`	`84`	`}`
`82`	`85`
`83`	`86`	`/// Convert CPI validation errors to Router errors`