diff --git a/x/auction/client/cli/query.go b/x/auction/client/cli/query.go index a2a4f0fc..e91e6609 100644 --- a/x/auction/client/cli/query.go +++ b/x/auction/client/cli/query.go @@ -2,8 +2,7 @@ package cli import ( "fmt" - - "cosmossdk.io/math" + "strconv" "github.com/cosmos/cosmos-sdk/client" "github.com/cosmos/cosmos-sdk/client/flags" @@ -68,6 +67,26 @@ func queryParams() *cobra.Command { return cmd } +func parseUint64(s string) (uint64, error) { + return strconv.ParseUint(s, 10, 64) +} + +func parseUint32(s string) (uint32, error) { + // In response to https://github.com/PeggyJV/sommelier/issues/292 + // let's use strconv.ParseUint to properly catch range errors and + // avoid underflows. + u, err := strconv.ParseUint(s, 10, 32) + if err != nil { + return 0, err + } + // Bullet-proof check to ensure no underflows (even though we already have range checks) + u32 := uint32(u) + if g := uint64(u32); g != u { + return 0, fmt.Errorf("parseuint32 underflow detected: got %d, want %d", g, u) + } + return u32, nil +} + func queryActiveAuction() *cobra.Command { cmd := &cobra.Command{ Use: "active-auction", @@ -80,14 +99,14 @@ func queryActiveAuction() *cobra.Command { return err } - auctionID, err := math.ParseUint(args[0]) + auctionID, err := parseUint32(args[0]) if err != nil { return err } queryClient := types.NewQueryClient(ctx) req := &types.QueryActiveAuctionRequest{ - AuctionId: uint32(auctionID.Uint64()), + AuctionId: auctionID, } res, err := queryClient.QueryActiveAuction(cmd.Context(), req) @@ -116,14 +135,14 @@ func queryEndedAuction() *cobra.Command { return err } - auctionID, err := math.ParseUint(args[0]) + auctionID, err := parseUint32(args[0]) if err != nil { return err } queryClient := types.NewQueryClient(ctx) req := &types.QueryEndedAuctionRequest{ - AuctionId: uint32(auctionID.Uint64()), + AuctionId: auctionID, } res, err := queryClient.QueryEndedAuction(cmd.Context(), req) @@ -288,20 +307,20 @@ func queryBid() *cobra.Command { return err } - auctionID, err := math.ParseUint(args[0]) + auctionID, err := parseUint32(args[0]) if err != nil { return err } - bidID, err := math.ParseUint(args[0]) + bidID, err := parseUint64(args[0]) if err != nil { return err } queryClient := types.NewQueryClient(ctx) req := &types.QueryBidRequest{ - AuctionId: uint32(auctionID.Uint64()), - BidId: bidID.Uint64(), + AuctionId: auctionID, + BidId: bidID, } res, err := queryClient.QueryBid(cmd.Context(), req) @@ -330,14 +349,14 @@ func queryBidsByAuction() *cobra.Command { return err } - auctionID, err := math.ParseUint(args[0]) + auctionID, err := parseUint32(args[0]) if err != nil { return err } queryClient := types.NewQueryClient(ctx) req := &types.QueryBidsByAuctionRequest{ - AuctionId: uint32(auctionID.Uint64()), + AuctionId: auctionID, } res, err := queryClient.QueryBidsByAuction(cmd.Context(), req) diff --git a/x/auction/client/cli/tx.go b/x/auction/client/cli/tx.go index f4890e1c..585ae462 100644 --- a/x/auction/client/cli/tx.go +++ b/x/auction/client/cli/tx.go @@ -5,8 +5,6 @@ import ( "os" "strings" - "cosmossdk.io/math" - "github.com/cosmos/cosmos-sdk/client" "github.com/cosmos/cosmos-sdk/client/flags" "github.com/cosmos/cosmos-sdk/client/tx" @@ -121,7 +119,7 @@ $ %s tx auction submit-bid 1 10000usomm 50000gravity0xdac17f958d2ee523a220620699 return err } - auctionID, err := math.ParseUint(args[0]) + auctionID, err := parseUint32(args[0]) if err != nil { return err } @@ -141,7 +139,7 @@ $ %s tx auction submit-bid 1 10000usomm 50000gravity0xdac17f958d2ee523a220620699 return fmt.Errorf("must include `--from` flag") } - msg, err := types.NewMsgSubmitBidRequest(uint32(auctionID.Uint64()), maxBidInUsomm, saleTokenMinimumAmount, bidder) + msg, err := types.NewMsgSubmitBidRequest(auctionID, maxBidInUsomm, saleTokenMinimumAmount, bidder) if err != nil { return err }