Vulnerable chaincodes for testing tool

This repository contains Golang test chaincodes for testing the chaincode vulnerability detection tool.

Versions

Every folder has two chaincodes: old_style and new_style.

This style was used until version 2.0 of Fabric. This smart contract uses

      "github.com/hyperledger/fabric-chaincode-go/shim"
      pb "github.com/hyperledger/fabric-protos-go/peer"

libraries. They also have the required Init and Invoke functions.

This style is used in Fabric version after 2.0 and these smart contracts have a library

       github.com/hyperledger/fabric-contract-api-go/contractapi

They also don't have the Invoke function.

gorutine - If concurrent programs are not handled properly, it is easy to cause a conflict condition problem that results in an non-deterministic execution.
field-declaration - There should be no field declarations in the chaincode structure. Chaincode needs to implement interfaces Init and Invoke, where fields can be accessed if they are defined in the structure. However, since each peer node does not necessarilyperform every transaction, the field values of the chaincode may be inconsistent among the peer nodes.

Name		Name	Last commit message	Last commit date
Latest commit History 12 Commits
cross-channel		cross-channel
field-declaration		field-declaration
range-query-risk		range-query-risk
reified-object-addresses		reified-object-addresses
tests		tests
.gitignore		.gitignore
Readme.md		Readme.md