Skip to content

CLI does not verify SHA-256 of WASM bytecode fetched from RPC #2463

Closed
#2465
Closed
CLI does not verify SHA-256 of WASM bytecode fetched from RPC#2463
#2465
Assignees
leighmcculloch
Labels
bugSomething isn't working
@leighmcculloch

Description

@leighmcculloch
leighmcculloch
opened on Mar 30, 2026

What version are you using?

v25.2.0

What did you do?

Several commands fetch WASM bytecode by hash from an RPC server but never verify that sha256(returned_bytes) matches the requested hash. As a defensive measure, the CLI should verify the integrity of the returned bytes against the known hash before using them.

Affected commands:

  • stellar contract invoke
  • stellar contract fetch
  • stellar contract deploy
  • stellar contract info
  • stellar events

What did you expect to see?

The CLI should compute sha256(returned_bytes) after fetching the WASM bytes and compare it to the requested hash. If the hash does not match, the CLI should return an error with a meaningful message indicating that the WASM bytecode returned by the RPC server does not match the expected hash.

What did you see instead?

The returned bytes are accepted without any integrity check.

Metadata

Metadata

Assignees

Labels

bugSomething isn't working

Type

No type

Projects

DevX

Status

Done

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions