← nischoy.ai

astro Verification

SMT2 formal verification of security-critical code paths

ALL VERIFIED
Overall
1
Properties Checked
1
Verified
0
Failed

Server-Islands Body Must Be Size-Limited Before JSON Parse

VERIFIED

Function: createEndpoint · Z3 solved in 0.1ms

CVE-2026-29772 class: handlers that parse attacker-controlled JSON request bodies must enforce explicit byte limits before deserialization. This catches sibling variants where endpoint registration is broad and JSON.parse occurs on unbounded bodies, enabling memory-amplification DoS.

View SMT2 Constraints 
; benchmark generated from python API
(set-info :status unknown)
(declare-fun server_island_body_bounded () Int)
(assert
 (<= server_island_body_bounded 1))
(assert
 (>= server_island_body_bounded 1))
(assert
 (and (distinct server_island_body_bounded 1) true))
(check-sat)

Last verified: 2026-03-26 10:04:28 UTC · Solver: Z3 4.16.0