- Replace raw Base58 decode and manual slice with base58.decode_check(xpub) to enforce checksum validation as required by BIP-32 and as implied by the method docstring.
- Add strict len(data) == 78 check before parsing to ensure the serialized extended key length matches the BIP-32 78-byte structure.
- This prevents accepting corrupted or truncated extended keys and aligns deserialization behavior with Base58Check semantics.
BIP328: Use Base58Check in ExtendedKey.deserialize and validate length #1955
pull sashass1315 wants to merge 2 commits into bitcoin:master from sashass1315:fix/xpub-decode-check changing 1 files +3 −1-
sashass1315 commented at 9:09 am on September 5, 2025: contributor
-
Use Base58Check in ExtendedKey.deserialize and validate length fd9f5694a8
-
in bip-0328/_xpub.py:137 in fd9f5694a8 outdated
132@@ -133,7 +133,9 @@ def deserialize(cls, xpub: str) -> 'ExtendedKey': 133 134 :param xpub: The Base58 check encoded xpub 135 """ 136- data = base58.decode(xpub)[:-4] # Decoded xpub without checksum 137+ data = base58.decode_check(xpub) 138+ if len(data) != 78:
jonatack commented at 4:24 pm on September 5, 2025:Maybe describe the origin of the 78 value.
0 if len(data) != 78: # BIP32 Serialization Format defines a 78-byte structure.jonatack added the label Pending acceptance on Sep 5, 2025fc10bd4995Update bip-0328/_xpub.py
Co-authored-by: Jon Atack <jon@atack.com>
github-metadata-mirror
This is a metadata mirror of the GitHub repository bitcoin/bips. This site is not affiliated with GitHub. Content is generated from a GitHub metadata backup.
generated: 2025-09-13 09:10 UTC
This is a metadata mirror of the GitHub repository bitcoin/bips. This site is not affiliated with GitHub. Content is generated from a GitHub metadata backup.
generated: 2025-09-13 09:10 UTC
This site is hosted by @0xB10C
More mirrored repositories can be found on mirror.b10c.me
More mirrored repositories can be found on mirror.b10c.me