Unpoison GetPubKey output for MSan

Sjors · Sjors · commit f60e97d33344 · 2025-10-18T11:42:37.000+02:00
secp256k1_ec_pubkey_serialize fills the CPubKey buffer from libsecp, which
runs without MemorySanitizer instrumentation. Mark the entire buffer
initialized so downstream Schnorr/XOnly conversions do not trip MSan during
the roundtrip handshake test.

Test: cmake --build build --target test_sv2 --config Release
Assisted-by: GitHub Copilot
Assisted-by: OpenAI GPT-5-Codex
diff --git a/src/key.cpp b/src/key.cpp
@@ -193,6 +193,9 @@ CPubKey CKey::GetPubKey() const {
     secp256k1_ec_pubkey_serialize(secp256k1_context_sign, (unsigned char*)result.begin(), &clen, &pubkey, fCompressed ? SECP256K1_EC_COMPRESSED : SECP256K1_EC_UNCOMPRESSED);
     assert(result.size() == clen);
     assert(result.IsValid());
+#ifdef MEMORY_SANITIZER
+    __msan_unpoison(result.data(), CPubKey::SIZE);
+#endif
     return result;
 }
 

Original file line number	Diff line number	Diff line change
`@@ -193,6 +193,9 @@ CPubKey CKey::GetPubKey() const {`
`193`	`193`	`secp256k1_ec_pubkey_serialize(secp256k1_context_sign, (unsigned char*)result.begin(), &clen, &pubkey, fCompressed ? SECP256K1_EC_COMPRESSED : SECP256K1_EC_UNCOMPRESSED);`
`194`	`194`	`assert(result.size() == clen);`
`195`	`195`	`assert(result.IsValid());`
	`196`	`+#ifdef MEMORY_SANITIZER`
	`197`	`+ __msan_unpoison(result.data(), CPubKey::SIZE);`
	`198`	`+#endif`
`196`	`199`	`return result;`
`197`	`200`	`}`
`198`	`201`