Fix out of bounds when verifying malformed proofs

Daniel Kuehr · Daniel Kuehr · commit 1e9a54bdbdaf · 2025-02-24T13:14:52.000-05:00
diff --git a/poly-commitment/src/commitment.rs b/poly-commitment/src/commitment.rs
@@ -738,6 +738,13 @@ impl<G: CommitmentCurve> SRS<G> {
             };
 
             let s = b_poly_coefficients(&chal);
+            
+            debug_assert!(s.len() <= scalars.len());
+
+            // TODO: implement a better solution at type/wire level, for now we just bail out...
+            if s.len() > scalars.len() {
+                return false;
+            }
 
             let neg_rand_base_i = -rand_base_i;
 
